>>>>> "Paul" == Paul Wise <pabs@debian.org> writes:
Paul> switching to another module but I suspect that modauthkerb
Paul> should just get removed from Debian in favour of
Paul> mod_auth_gssapi, which is supposed to be a replacement.
I think that mod_auth_gssapi plus mod_auth_pam and libpam-sss or
libpam-krb5 is a good replacement for mod-auth-kerb.
What mod-auth-kerb has going for it is that as I recall, it supports
both spnego auth and password auth in one module.
I think I will be able to upload a fix.
But I do agree that the state of mod-auth-kerb is kind of grim.
My proposal is to fix this, because I think it's relatively easy.
But once the fixed libapache2-mod-auth-kerb gets into testing, open a
serious bug questioning whether it's releasable as krb5 maintainer.
I think it's fine for anyone willing to put in the effort to maintain
the package to close such a bug, but I think it's reasonable for me as
an interested party to raise that question.
Especially after your analysis as someone who has performed several of
the recent NMUs.
--Sam
Attachment:
signature.asc
Description: PGP signature