Brian May writes:
> On 29 January 2014 10:03, Jelmer Vernooij wrote:
>> Don't we want kf/kfd?
> Are these any use without rsh? I have vague recollection ssh now
> supports ticket forwarding.
ssh supports ticket forwarding if built with the patches required to use
GSSAPIKeyExchange, which are p
On 29 January 2014 10:03, Jelmer Vernooij wrote:
> > heimdal-clients-x (contains xnlock, kx, tenletxr, rxtelnet, rxterm)
> > heimdal-servers-x (contains kxd)
> > heimdal-servers (this isn't kdc, but contains rshd, login, ftpd, telnetd,
> > popper, kfd)
> Don't we want kf/kfd?
>
Are these any use
On Wed, Jan 29, 2014 at 09:23:01AM +1100, Brian May wrote:
> On 29 January 2014 07:11, Sam Hartman wrote:
>
> > I plan to request removal.
> > If there's a debian developer who thinks I'm making the wrong call they
> > should feel free to turn my removal request into a request to adopt the
> > p
Jelmer Vernooij writes:
> The following three are generic utilities, not particularly specific
> to Kerberos:
> /usr/bin/otp
> /usr/bin/otpprint
> /usr/bin/string2key
string2key is specific to Kerberos in that it provides a command-line
interface to the Kerberos string-to-key operation. That's
On 29 January 2014 07:11, Sam Hartman wrote:
> I plan to request removal.
> If there's a debian developer who thinks I'm making the wrong call they
> should feel free to turn my removal request into a request to adopt the
> package.
>
It has been suggested that we should plan to do the similar
FWIW, I'm not seeing enough demand that I'm interested in maintaining
krb5-appl.
I plan to request removal.
If there's a debian developer who thinks I'm making the wrong call they
should feel free to turn my removal request into a request to adopt the
package.
--Sam
--
To UNSUBSCRIBE, email
Brian May writes:
> I haven't double checked what is supplied with krb5-appl, compared with
> the Heimdal packages.
It's considerably smaller. It provides krb5-clients (ftp, telnet, rsh,
rlogin, and rcp), krb5-ftpd, krb5-rsh-server, and krb5-telnetd.
> My understanding though is there is no ob
On 24 Jan 2014 03:33, "Sam Hartman" wrote:
> My proposal is to drop the package from the archive, but I wanted to
> give others a chance to shout out that I'm wrong and that there's some
> compelling use-case I've missed.
> If someone can convince me that the packages are useful I'm happy to
> spe
Sebastian Feld writes:
> On Sat, Jan 25, 2014 at 7:13 PM, Moritz Mühlenhoff wrote:
>> I agree with the removal. http://www.debian.org/security/2011/dsa-2375
>> was already a sufficiently unpleasant christmas present (exploit was
>> posted on on 24th December)
> I agree with the removal. Debian
On Sat, Jan 25, 2014 at 7:13 PM, Moritz Mühlenhoff wrote:
> Brian May schrieb:
>> --001a11c1fd62df72e504f0aac077
>> Content-Type: text/plain; charset=UTF-8
>>
>> On 24 January 2014 04:14, Jelmer Vernooij wrote:
>>
>>> > My proposal is to drop the package from the archive, but I wanted to
>>> > g
Brian May writes:
> On 28 January 2014 04:08, Russ Allbery wrote:
>> (And, regardless, the telnet implementation really needs to go away.)
> I don't know what problems telnet has, however I suspect you will find
> the Kerberos ftp to be equally as bad.
I believe ftp at least uses GSS-API and h
On 28 January 2014 04:08, Russ Allbery wrote:
> (And, regardless, the telnet implementation really needs to go away.)
>
I don't know what problems telnet has, however I suspect you will find the
Kerberos ftp to be equally as bad.
At one stage, I seem to recall there was a bug in heimdal ftpd th
Simon Toedt writes:
> If courses there is another issue: What still left as "use case" of
> Kerberos5 if krb-rsh and krb-rlogin are no longer available? Typical
> university setup is krb-NFSv3/krb-NFSv4 plus krb-rlogin internally and
> ssh only for external access.
I am quite dubious of this sta
Joshuah Hurst writes:
> Only in cases when Kerberos5 is not available. One major advantage over
> ssh is that krb5-rsh has much lower latency and overhead (in terms of
> used cpu time) when executing a plain /bin/true on a remote host, doing
> that in a loop over 1000 logins can take hours with
On Mon, Jan 27, 2014 at 11:27:52AM +0100, Simon Toedt wrote:
> Hint: Before further claiming the obsolesce of krb-rsh/rlogin vs ssh
> please try ssh on an ARM box (e.g gumstix) vs krb-rsh. ssh takes
> almost 2.6 seconds to complete (even with tuning and using arcfour),
> krb-rsh executes the same i
On Mon, Jan 27, 2014 at 1:05 AM, Philipp Kern wrote:
> On 2014-01-25 20:23, Joshuah Hurst wrote:
>>
>> One major advantage over ssh is that krb5-rsh has much lower latency
>> and overhead (in terms of used cpu time) when executing a plain
>> /bin/true on a remote host, doing that in a loop over 10
On 2014-01-25 20:23, Joshuah Hurst wrote:
One major advantage over ssh is that krb5-rsh has much lower latency
and overhead (in terms of used cpu time) when executing a plain
/bin/true on a remote host, doing that in a loop over 1000 logins can
take hours with ssh but takes minutes with krb-rsh.
On Thu, Jan 23, 2014 at 5:25 PM, Sam Hartman wrote:
>
>
> hi.
> A few months ago, Russ Allberry stepped down from co-maintaining
> krb5-appl.
> I'm reasonably happy to keep maintaining it, although when we thought
> about it, we cannot think of anyone using the package.
> It provides krb5 versions
Brian May schrieb:
> --001a11c1fd62df72e504f0aac077
> Content-Type: text/plain; charset=UTF-8
>
> On 24 January 2014 04:14, Jelmer Vernooij wrote:
>
>> > My proposal is to drop the package from the archive, but I wanted to
>> > give others a chance to shout out that I'm wrong and that there's som
On 24 January 2014 04:14, Jelmer Vernooij wrote:
> > My proposal is to drop the package from the archive, but I wanted to
> > give others a chance to shout out that I'm wrong and that there's some
> > compelling use-case I've missed.
> > If someone can convince me that the packages are useful I'm
On Thu, Jan 23, 2014 at 04:25:52PM +, Sam Hartman wrote:
> A few months ago, Russ Allberry stepped down from co-maintaining
> krb5-appl.
> I'm reasonably happy to keep maintaining it, although when we thought
> about it, we cannot think of anyone using the package.
> It provides krb5 versions o
hi.
A few months ago, Russ Allberry stepped down from co-maintaining
krb5-appl.
I'm reasonably happy to keep maintaining it, although when we thought
about it, we cannot think of anyone using the package.
It provides krb5 versions of rlogin, rsh, ftp and telnet.
The telnet is insecure and should
22 matches
Mail list logo
