> > add a pam_krb5 module to pam package (this module exist, check: > http://www.kernel.org/pub/linux/libs/pam/modules.html -> Kerberos) > and implement kerberos authentication mechanism via pam, not via > directly linking kerberos libs into daemons..
/contrib/RPMS/pam_krb5-1.56-2mdk.i586.rpm > i think this is crystal clear solution to non kerberized enviroment. if > someone want krb5, then change configuration of desired application and > add this into pam configuration file (this is similar like ldap > authorization, or sql or radius, or something else..) > > > ... and move your ftpsomething package from contrib to main ? > > this is not required :) it was only my tip to "default" ftp client only. > > i only want to tell, that i think: directly linked kerberos libraries > into apps isn't clear solutions and systematic for some systems which want > krb5 support.. it can be "optionally", not "by default".. -- Florin http://www.mandrakesoft.com http://people.mandrakesoft.com/~florin/
