freebsd-skq/crypto/kerberosIV
nectar 637cc179f5 Background:
When libdes was replaced with OpenSSL's libcrypto, there were a few
 interfaces that the former implemented but the latter did not.  Because
 some software in the base system still depended upon these interfaces,
 we simply included them in our libcrypto (rnd_keys.c).

Now, finally get around to removing the dependencies on these
interfaces.  There were basically two cases:

  des_new_random_key -- This is just a wrapper for des_random_key, and
     these calls were replaced.

  des_init_random_number_generator et. al. -- A few functions were used
     by the application to seed libdes's PRNG.  These are not necessary
     when using libcrypto, as OpenSSL internally seeds the PRNG from
     /dev/random.  These calls were simply removed.

Again, some of the Kerberos 4 files have been taken off the vendor
branch.  I do not expect there to be future imports of KTH Kerberos 4.
2003-01-29 18:14:29 +00:00
..
admin Background: 2003-01-29 18:14:29 +00:00
appl
cf
doc
etc
include
kadmin Background: 2003-01-29 18:14:29 +00:00
kuser
lib
man
server Background: 2003-01-29 18:14:29 +00:00
slave
acconfig.h
acinclude.m4
aclocal.m4
ChangeLog
config.guess
config.sub
configure
configure.in
COPYRIGHT
eBones-p9.README
install-sh
Makefile.in
mkinstalldirs
NEWS
PROBLEMS
README
TODO

*** PLEASE REPORT BUGS AND PROBLEMS TO kth-krb-bugs@nada.kth.se ***

This is a severly hacked up version of Eric Young's eBones-p9 kerberos
version. The DES library has been updated with his 3.23 version and
numerous patches collected over the years have been applied to both
the kerberos and DES sources, most notably the CMU patches for extended
lifetimes that AFS uses. There is also support for AFS built into most
programs. 

The source has been changed to use ANSI C and POSIX to the largest
possible extent. The code in util/et and appl/bsd have not been
updated in this way though (they really need it).

Telnet and telnetd are based on the telnet.95.10.23.NE.tar.Z. Kerberos
authentication is the default and warnings are issued by telnetd if
the telnet client does not turn on encryption.

The r* programs in appl/bsd have been updated with newer sources from
NetBSD and FreeBSD. NOTE: use of telnet is prefered to the use of
rlogin which is a temporary hack and not an Internet standard (and has
only been documented quite recently).  Telnet uses kerberos
authentication to prevent the passing of cleartext passwords and is
thus superior to rlogin.

The distribution has been configured to primarily use kerberos
authentication with a fallback to /etc/passwd passwords. This should
make it easy to do a slow migration to kerberos.  OTP support is also
included in login, popper, and ftpd.

All programs in this distribution follow these conventions:

/usr/athena/bin:	User programs
/usr/athena/sbin:	Administrator programs
/usr/athena/libexec:	Daemons
/etc:			Configuration files
/var/log:		Logfiles
/var/kerberos:		Kerberos database and ACL files

A W3-page is at http://www.pdc.kth.se/kth-krb/

You can get some documentation from ftp://ftp.pdc.kth.se/pub/krb/doc.

Please report bugs and problems to kth-krb-bugs@nada.kth.se

There is a mailing list discussing kerberos at krb4@sics.se, send a
message to majordomo@sics.se to subscribe.