Project

General

Profile

Actions

Bug #4530

open

Kerberos implementation should be updated

Added by Marcel Telka over 7 years ago. Updated almost 5 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
cmd - userland programs
Start date:
2014-01-25
Due date:
% Done:

0%

Estimated time:
Difficulty:
Medium
Tags:
needs-triage
Gerrit CR:

Description

The kerberos implementation in illumos is based on MIT Kerberos 1.6.3, with some enhancements and modifications. The list of the enhancements and modifications might be found at:

http://docs.oracle.com/cd/E23824_01/html/821-1456/works-11.html

Unfortunately, it is unclear how complete the list is (I failed to find a better list, so this is only what we do have).

The MIT Kerberos 1.6.3 was released in October 2007 and is no longer support by MIT, so there might be some security issues.

Based on that, we should consider to refresh the kerberos implementation and resync it with some newer version of MIT Kerberos.

Actions #1

Updated by Alexander Pyhalov almost 5 years ago

There's userland gate kerberos version, perhaps it has most of the necessary patches... https://hg.openindiana.org/upstream/oracle/userland-gate/file/9719142d2b5d/components/krb5

Actions

Also available in: Atom PDF