| From: | Sean Chittenden <sean(at)chittenden(dot)org> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Peter Eisentraut <peter_e(at)gmx(dot)net>, pgsql-patches(at)postgresql(dot)org |
| Subject: | Re: Removal of krb4 support... |
| Date: | 2003-05-16 17:53:12 |
| Message-ID: | 20030516175312.GI42125@perrin.int.nxad.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-patches |
> >> The attached patch completely removes krb4 support.
>
> > As long as people are still using it, I see no reason. Just the
> > other day someone reported that he was trying to get it to work in
> > his environment.
There are kits running around for krb4, I hope their DB isn't publicly
available.
> I was feeling itchy about that too. How about just adding some
> disclaimers to the docs that Kerberos 4 has known security flaws?
>
> I wouldn't mind pulling it from 7.5, if the 7.4 docs say we are
> going to and no one complains.
If you'd like, I can submit a quick patch to raise a warning if the
auth type is krb4 as a depreciation notice and something for the docs.
Sorry if this came out of the blue, the topic came up yesterday at
lunch so I submitted something to take care of the prob. At this
point in time, there is no reason for anyone to be using krb4. -sc
--
Sean Chittenden
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Teodor Sigaev | 2003-05-16 18:30:32 | Re: Heads up: 7.3.3 this Wednesday |
| Previous Message | Manfred Koizar | 2003-05-16 17:12:31 | Re: Static snapshot data |