Attachment 170296 Details for Bug 204899 – hostM operational state with py-kerberos 1.2.4

hostM operational state with py-kerberos 1.2.4

hostM-state.txt (text/plain), 4.19 KB, created by John W. O'Brien on 2016-05-15 00:16:40 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: John W. O'Brien

Created: 2016-05-15 00:16:40 UTC

Size: 4.19 KB

patch

obsolete

>FreeBSD hostM.example.com 10.3-BETA3 FreeBSD 10.3-BETA3 #0 r296217: Mon Feb 29 14:30:41 EST 2016     root@buildhost.example.com:/usr/obj/usr/src/sys/ATOMIC  amd64
>py27-kerberos-1.2.4
>Name           : py27-kerberos
>Version        : 1.2.4
>Installed on   : Sat May 14 18:53:13 2016 EDT
>Origin         : security/py-kerberos
>Architecture   : freebsd:10:x86:64
>Prefix         : /usr/local
>Categories     : security python
>Licenses       : APACHE20
>Maintainer     : dvl@FreeBSD.org
>WWW            : http://trac.calendarserver.org/
>Comment        : Kerberos bindings for python
>Options        :
>    GSSAPI_BASE    : off
>    GSSAPI_HEIMDAL : off
>    GSSAPI_MIT     : on
>Shared Libs required:
>    libgssapi_krb5.so.2.2
>    libk5crypto.so.3.1
>    libpython2.7.so.1
>    libkrb5.so.3.3
>    libcom_err.so.3.0
>Annotations    :
>    repo_type      : binary
>    repository     : example-gssmit
>Flat size      : 98.6KiB
>Description    :
>This Python package is a high-level wrapper for Kerberos (GSSAPI) operations.
>The goal is to avoid having to build a module that wraps the entire
>Kerberos.framework, and instead offer a limited set of functions that do what is
>needed for client/server Kerberos authentication based on
><http://www.ietf.org/rfc/rfc4559.txt>.
>
>WWW: http://trac.calendarserver.org/
>pkg: No package(s) matching heim
>krb5-1.14.2
>Name           : krb5
>Version        : 1.14.2
>Installed on   : Sat May 14 18:53:12 2016 EDT
>Origin         : security/krb5
>Architecture   : freebsd:10:x86:64
>Prefix         : /usr/local
>Categories     : security
>Licenses       : MIT
>Maintainer     : cy@FreeBSD.org
>WWW            : http://web.mit.edu/kerberos/
>Comment        : Authentication system developed at MIT, successor to Kerberos IV
>Options        :
>    DNS_FOR_REALM  : off
>    KRB5_HTML      : on
>    KRB5_PDF       : on
>    LDAP           : off
>    LIBEDIT        : off
>    READLINE       : off
>Shared Libs required:
>    libintl.so.8
>Shared Libs provided:
>    libkrb5support.so.0.1
>    libgssrpc.so.4.2
>    libk5crypto.so.3.1
>    libkadm5srv_mit.so.10.0
>    libkdb5.so.8.0
>    libverto.so.0.0
>    libgssapi_krb5.so.2.2
>    libkrb5.so.3.3
>    libcom_err.so.3.0
>    libkadm5clnt_mit.so.10.0
>    libkrad.so.0.0
>Annotations    :
>    cpe            : cpe:2.3:a:mit:kerberos:5-1.14.2:::::freebsd10:x64
>    repo_type      : binary
>    repository     : example-gssmit
>Flat size      : 9.66MiB
>Description    :
>Kerberos V5 is an authentication system developed at MIT.
>WWW: http://web.mit.edu/kerberos/
>
>Abridged from the User Guide:
>       Under Kerberos, a client sends a request for a ticket to the
>   Key Distribution Center (KDC). The KDC creates a ticket-granting
>   ticket (TGT) for the client, encrypts it using the client's
>   password as the key, and sends the encrypted TGT back to the
>   client. The client then attempts to decrypt the TGT, using
>   its password. If the client successfully decrypts the TGT, it
>   keeps the decrypted TGT, which indicates proof of the client's
>   identity. The TGT permits the client to obtain additional tickets,
>   which give permission for specific services.
>       Since Kerberos negotiates authenticated, and optionally encrypted,
>   communications between two points anywhere on the internet, it
>   provides a layer of security that is not dependent on which side of a
>   firewall either client is on.
>       The Kerberos V5 package is designed to be easy to use. Most of the
>   commands are nearly identical to UNIX network programs you are already
>   used to. Kerberos V5 is a single-sign-on system, which means that you
>   have to type your password only once per session, and Kerberos does
>   the authenticating and encrypting transparently.
>
>Jacques Vidrine <n@nectar.com>
>example.keytab:
>
>Vno  Type                     Principal                                   Aliases
>  2  aes256-cts-hmac-sha1-96  example/hostM.example.com@EXAMPLE.COM
>  2  aes128-cts-hmac-sha1-96  example/hostM.example.com@EXAMPLE.COM
>  2  des3-cbc-sha1            example/hostM.example.com@EXAMPLE.COM
>  2  arcfour-hmac-md5         example/hostM.example.com@EXAMPLE.COM
>Credentials cache: FILE:/tmp/krb5cc_6034
>        Principal: john@EXAMPLE.COM
>
>  Issued                Expires               Principal
>May 14 18:59:43 2016  May 15 04:59:43 2016  krbtgt/EXAMPLE.COM@EXAMPLE.COM

Actions: View

Attachments on bug 204899: 163659 | 163660 | 163661 | 163662 | 163663 | 163664 | 170294 | 170295 | 170296 | 170297 | 170298 | 170299 | 189754