Home > mailing lists

Re: Patch to add Heimdal kerberos support - Mailing list pgsql-patches

From	Peter Eisentraut
Subject	Re: Patch to add Heimdal kerberos support
Date	November 14, 2001 14:50:24
Msg-id	Pine.LNX.4.30.0111141653170.639-100000@peter.localdomain Whole thread Raw
In response to	Re: Patch to add Heimdal kerberos support (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: Patch to add Heimdal kerberos support
List	pgsql-patches

Tree view

Tom Lane writes:

> It also seems that our present code may be using some long-deprecated
> Kerberos APIs --- for example, the krb5_recvauth man pages I can find on
> the net describe several more parameters than our code is expecting to
> pass.

No idea about the deprecatedness, but our Kerberos code does compile with
the Kerberos V shipped in Red Hat 7.0 (MIT, I think), and the Kerberos IV
code compiled successfully with KTH Kerberos last time I checked.

However, most of the three people that ever mentioned anything detailed
about the Kerberos support in PostgreSQL had the sound of "fundementally
flawed", "totally insecure", etc.

--
Peter Eisentraut   peter_e@gmx.net

pgsql-patches by date:

From: Peter Eisentraut
Date: 14 November 2001, 14:29:53
Subject: Re: Patch to add Heimdal kerberos support

From: "Zeugswetter Andreas SB SD"
Date: 14 November 2001, 18:52:46
Subject: Re: [HACKERS] Open Items (was: RE: [HACKERS] Beta going well)

Re: Patch to add Heimdal kerberos support - Mailing list pgsql-patches

Previous

Next