openldap question and possible feature conflict

To: debian-devel@lists.debian.org, Ben Collins <bcollins@debian.org>, Sam Hartman <hartmans@debian.org>
Subject: openldap question and possible feature conflict
From: Brian May <bam@debian.org>
Date: 27 Apr 2001 16:43:21 +1000
Message-id: <[🔎] 84lmom7shi.fsf@snoopy.apana.org.au>

Hello,

Open question to maintainer of openldap2: Are there any long term
plans to upload a debian version of libldap2 with ssl and/or kpasswd
support?

Note:
1. I use both myself, although I only have kpasswd for testing...
2. I don't understand why kpasswd support required Kerberos, and can't
use the SASL authentication instead. Perhaps I am missing something.

Reason for asking:

I have got a bug report #95246 requesting Heimdal be compiled against
openldap2. This would enable being able to store the Kerberos database
in the openldap database. All data is stored in LDAP encrypted, so
even if somebody accesses the openldap database, the Kerberos data is
not compromised.

However, if openldap2 supports kpasswd (allows putting a kerberos
realm in place of the password in the LDAP database), then we will have:

Source: heimdal
Build-depends: libldap-dev, ...

Source: openldap2
Build-depends: heimdal-dev, ...

which doesn't look real good.

Also Sam Hartman is going to scream "what about MIT Kerberos?" Sorry,
that doesn't count ;-). (two versions of openldap2? arrgghhh!).
-- 
Brian May <bam@debian.org>

Reply to:

Follow-Ups:
- Re: openldap question and possible feature conflict
  - From: Sam Hartman <hartmans@mit.edu>

Prev by Date: Re: kernel-{image,headers} package bloat
Next by Date: Re: I screwed up a bug closing
Previous by thread: Re: I screwed up a bug closing
Next by thread: Re: openldap question and possible feature conflict
Index(es):
- Date
- Thread