Now
MAIN commitmail json YAML
pkgsrc/security/kth-krb4/Makefile@1.54
/
diff
pkgsrc/security/kth-krb4/PLIST@1.18 / diff
pkgsrc/security/kth-krb4/distinfo@1.14 / diff
pkgsrc/security/kth-krb4/patches/patch-aa@1.7 / diff
pkgsrc/security/kth-krb4/patches/patch-appl_ftp_ftpd_ftpcmd.y@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-appl_ftp_ftpd_pathnames.h@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_kadm_kadm_cli_wrap.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_krb-protos.h@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_krb_check_auth.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_mk_priv.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_rd_priv.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_recvauth.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_sendauth.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_solaris_compat.c@1.1 / diff
pkgsrc/security/kth-krb4/PLIST@1.18 / diff
pkgsrc/security/kth-krb4/distinfo@1.14 / diff
pkgsrc/security/kth-krb4/patches/patch-aa@1.7 / diff
pkgsrc/security/kth-krb4/patches/patch-appl_ftp_ftpd_ftpcmd.y@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-appl_ftp_ftpd_pathnames.h@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_kadm_kadm_cli_wrap.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_krb-protos.h@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_krb_check_auth.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_mk_priv.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_rd_priv.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_recvauth.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_sendauth.c@1.1 / diff
pkgsrc/security/kth-krb4/patches/patch-lib_krb_solaris_compat.c@1.1 / diff
security/kth-krb4: Add DragonFly and FreeBSD support
The majority of these patches were inspired from FreeBSD's ports. FreeBSD,
along with at least Debian, have removed Kerberos4 due to secuity concerns.
From: http://web.mit.edu/kerberos/krb4-end-of-life.html :
"Serious protocol flaws[2] have been found in Kerberos 4. These flaws permit
attacks which require far less effort than an exhaustive search of the DES
key space. These flaws make Kerberos 4 cross-realm authentication an
unacceptable security risk and raise serious questions about the security of
the entire Kerberos 4 protocol.
The known insecurity of DES, combined with the recently discovered protocol
flaws, make it extremely inadvisable to rely on the security of version 4 of
the Kerberos protocol. These factors motivate the MIT Kerberos Team to remove
support for Kerberos version 4 from the MIT implementation of Kerberos."
This end-of-life announcement is dated 19 October 2006. I think it's a
good question to ask why this package and the packages that depend on it
are still in pkgsrc.
The majority of these patches were inspired from FreeBSD's ports. FreeBSD,
along with at least Debian, have removed Kerberos4 due to secuity concerns.
From: http://web.mit.edu/kerberos/krb4-end-of-life.html :
"Serious protocol flaws[2] have been found in Kerberos 4. These flaws permit
attacks which require far less effort than an exhaustive search of the DES
key space. These flaws make Kerberos 4 cross-realm authentication an
unacceptable security risk and raise serious questions about the security of
the entire Kerberos 4 protocol.
The known insecurity of DES, combined with the recently discovered protocol
flaws, make it extremely inadvisable to rely on the security of version 4 of
the Kerberos protocol. These factors motivate the MIT Kerberos Team to remove
support for Kerberos version 4 from the MIT implementation of Kerberos."
This end-of-life announcement is dated 19 October 2006. I think it's a
good question to ask why this package and the packages that depend on it
are still in pkgsrc.