From donn@u.washington.edu Wed Jan 16 19:38:43 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id TAA19936 for ; Wed, 16 Jan 2002 19:38:38 -0500 (EST) Received: from mxout2.cac.washington.edu (mxout2.cac.washington.edu [140.142.33.4]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id TAA09079 for ; Wed, 16 Jan 2002 19:38:38 -0500 (EST) Received: from mailhost1.u.washington.edu (mailhost1.u.washington.edu [140.142.32.2]) by mxout2.cac.washington.edu (8.12.1+UW01.12/8.12.1+UW02.01) with ESMTP id g0H0cbMP002508 for ; Wed, 16 Jan 2002 16:38:37 -0800 Received: from xceed.cac.washington.edu (xceed.cac.washington.edu [128.95.135.150]) by mailhost1.u.washington.edu (8.12.1+UW01.12/8.12.1+UW01.12) with ESMTP id g0H0cbZU002695 for ; Wed, 16 Jan 2002 16:38:37 -0800 Date: Wed, 16 Jan 2002 16:38:37 -0800 Message-Id: <200201170038.g0H0cbZU002695@mailhost1.u.washington.edu> From: "Donn Cave" To: X-Mailer: BeOS-PyNR V1 Subject: Re: krb5 1.2.3 compile errors Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Quoth Tom Yu : ... | Try using xlc instead. The cc on AIX doesn't seem to deal with ANSI | prototypes. Of course, there is a separate problem in | lib/kadm5/unit-test, in that xlc doesn't like -DFOO=1 -UFOO -DFOO=2, | but that's a separate issue that we're looking into. Strictly speaking, "cc" does support ANSI prototypes, it just doesn't define __STDC__. Same for cc on Digital UNIX 4.0. You more or less need it anyway, as long as the buffer overflow patches require stdarg, so it might be just as well to assume prototype support, __STDC__ or no. (I'm referring to the end of defs.h, P() prototype macro, suggesting you remove the "#ifdef __STDC__".) xlc does define __STDC__. On Digital UNIX 4 you can use cc -std to define it, or -std0 or -std1 if you need more real compliance for some reason. Donn Cave, donn@u.washington.edu From raeburn@MIT.EDU Thu Jan 17 15:37:10 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id PAA04658 for ; Thu, 17 Jan 2002 15:37:10 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id PAA28404; Thu, 17 Jan 2002 15:37:10 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id PAA29315; Thu, 17 Jan 2002 15:37:07 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id PAA23971; Thu, 17 Jan 2002 15:37:07 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id PAA13020; Thu, 17 Jan 2002 15:37:08 -0500 To: Emily Ratliff Cc: Subject: Re: thread-safe Kerberos libraries References: From: Ken Raeburn Date: 17 Jan 2002 15:37:08 -0500 In-Reply-To: Message-ID: Lines: 36 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.0.107 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: > I volunteer to write up the shim & callback functionality that you define > in this email, but it will probably take me a little while to get the > code to you. Did one of you want to write it or did you want me to? I > just want to make sure that you want me to do this, so that we are > not duplicating effort. This would be great! I don't think we've got time to do it at MIT right now, though once it's done we should be able to fill in the Windows version etc. This will bring up copyright and licensing issues though... will you/IBM give ownership (copyright) of the code to MIT, or keep it, and if the latter, what are the licensing terms? (Naturally we'd prefer it be assigned to MIT. We have to hash out just what licensing terms are acceptable for contributed or imported code; we've been rather vague on that point in the past.) > It looks good to me, but after reading through your email several times, > I'd like to go ahead and start implementing this before committing to an > opinion about this and your other questions. Great. Let us know how it looks as you get further along. > Well, I think that thread safety is more important until IPv6 becomes > more widespread but I guess it will be best to make it a compile time > option with the default of your choice. Can you remember which OS had the > gethostbyname problem? That way we can track when the problem get solved. Not offhand. In the end, actually, I decided not to bother with either thread safety or IPv6 support in the replacement getaddrinfo I was working on. Either (or maybe both) can be fixed later. I think I've heard more complaints about the lack of IPv6 support than the lack of thread safety, at least recently, but I know both are important to different people... From raeburn@MIT.EDU Thu Jan 17 17:51:59 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id RAA06320 for ; Thu, 17 Jan 2002 17:51:59 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id RAA17180 for ; Thu, 17 Jan 2002 17:51:58 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id RAA21761; Thu, 17 Jan 2002 17:51:58 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id RAA01559; Thu, 17 Jan 2002 17:51:58 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id RAA15814; Thu, 17 Jan 2002 17:51:58 -0500 To: krbdev@MIT.EDU Subject: changing krbdev mailing list maintenance (resend) From: Ken Raeburn Date: 17 Jan 2002 17:51:58 -0500 Message-ID: Lines: 38 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: (I'm resending this because some email at MIT was delayed or lost last night due to a mail system hiccup not directly related to these changes.) We're experimenting with moving the krbdev mailing list to a Mailman server at MIT, for easier automated maintenance. If this experiment seems to work well, we will probably also move the Kerberos list to this server. Please let Tom and I know of any problems you encounter with this server. You can make changes to your list subscription, including for example getting digests instead of separate messages, through this web page: http://mailman.mit.edu/mailman/listinfo/krbdev That page also has a pointer to the new (mailman-generated) archives. Older archives are still available in at least one or two places on the net, and will presumably continue to be available. You can also make changes to your subscription through email to krbdev-request@mit.edu, with subjects including "subscribe", "unsubscribe", "help", etc. These messages will now be automatically processed by the mailman server rather than waiting for one of us to get to it. It should also filter out unsubscribe requests sent to the list itself. Each user is assigned a password to use for changing options through the web interface. This password can be retrieved via the web interface. This may be a problem for any redistribution lists and public archives; contact me or Tom if it is. This change should prevent most bounces from being sent back to the original senders; in fact, most of the bounce handling should be automated. Currently, spam filtering is not enabled; we may change that later. Ken From nneul@umr.edu Thu Jan 17 21:55:22 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id VAA09318 for ; Thu, 17 Jan 2002 21:55:21 -0500 (EST) Received: from mx.rollanet.org (mailsrv.rollanet.org [192.55.114.7]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with SMTP id VAA05414 for ; Thu, 17 Jan 2002 21:55:21 -0500 (EST) Received: (qmail 15513 invoked from network); 18 Jan 2002 02:55:20 -0000 Received: from cessna.rollanet.org (HELO umr.edu) (nneul@216.229.93.21) by mx.rollanet.org with SMTP; 18 Jan 2002 02:55:20 -0000 Message-ID: <3C478E96.10E1E3E8@umr.edu> Date: Thu, 17 Jan 2002 20:55:18 -0600 From: Nathan Neulinger X-Mailer: Mozilla 4.78 [en] (X11; U; Linux 2.4.15-pre4 i686) X-Accept-Language: en MIME-Version: 1.0 To: Ken Raeburn , krbdev@MIT.EDU Subject: Re: changing krbdev mailing list maintenance (resend) References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Hey wait... it isn't April 1st... It's about time. :) -- Nathan Ken Raeburn wrote: > > (I'm resending this because some email at MIT was delayed or lost last > night due to a mail system hiccup not directly related to these > changes.) > > We're experimenting with moving the krbdev mailing list to a Mailman > server at MIT, for easier automated maintenance. If this experiment > seems to work well, we will probably also move the Kerberos list to > this server. Please let Tom and I know of any problems you encounter > with this server. > > You can make changes to your list subscription, including for example > getting digests instead of separate messages, through this web page: > > http://mailman.mit.edu/mailman/listinfo/krbdev > > That page also has a pointer to the new (mailman-generated) archives. > Older archives are still available in at least one or two places on > the net, and will presumably continue to be available. > > You can also make changes to your subscription through email to > krbdev-request@mit.edu, with subjects including "subscribe", > "unsubscribe", "help", etc. These messages will now be automatically > processed by the mailman server rather than waiting for one of us to > get to it. It should also filter out unsubscribe requests sent to the > list itself. > > Each user is assigned a password to use for changing options through > the web interface. This password can be retrieved via the web > interface. This may be a problem for any redistribution lists and > public archives; contact me or Tom if it is. > > This change should prevent most bounces from being sent back to the > original senders; in fact, most of the bounce handling should be > automated. > > Currently, spam filtering is not enabled; we may change that later. > > Ken > _______________________________________________ > krbdev mailing list > krbdev@mit.edu > http://mailman.mit.edu/mailman/listinfo/krbdev -- ------------------------------------------------------------ Nathan Neulinger EMail: nneul@umr.edu University of Missouri - Rolla Phone: (573) 341-4841 Computing Services Fax: (573) 341-4216 From root@MIT.EDU Thu Jan 17 22:29:51 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id WAA09751 for ; Thu, 17 Jan 2002 22:29:50 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.21.75]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id WAA18362 for ; Thu, 17 Jan 2002 22:29:50 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id WAA15983 for ; Thu, 17 Jan 2002 22:29:50 -0500 (EST) Received: (from root@localhost) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) id WAA08720; Thu, 17 Jan 2002 22:29:50 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id UAA10788; Wed, 16 Jan 2002 20:29:21 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id UAA21272; Wed, 16 Jan 2002 20:29:22 -0500 To: krbdev@MIT.EDU Subject: changing krbdev mailing list maintenance From: Ken Raeburn Date: 16 Jan 2002 20:29:22 -0500 Message-ID: Lines: 35 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: We're experimenting with moving the krbdev mailing list to a Mailman server at MIT, for easier automated maintenance. If this experiment seems to work well, we will probably also move the Kerberos list to this server. Please let Tom and I know of any problems you encounter with this server. You can make changes to your list subscription, including for example getting digests instead of separate messages, through this web page: http://mailman.mit.edu/mailman/listinfo/krbdev That page also has a pointer to the new (mailman-generated) archives. Older archives are still available in at least one or two places on the net, and will presumably continue to be available. You can also make changes to your subscription through email to krbdev-request@mit.edu, with subjects including "subscribe", "unsubscribe", "help", etc. These messages will now be automatically processed by the mailman server rather than waiting for one of us to get to it. It should also filter out unsubscribe requests sent to the list itself (and bounce them, rather than act on them, to teach people to Do The Right Thing). Each user is assigned a password to use for changing options through the web interface. This password can be retrieved via the web interface. This may be a problem for any redistribution lists and public archives; contact me or Tom if it is. This change should prevent most bounces from being sent back to the original senders; in fact, most of the bounce handling should be automated. Currently, spam filtering is not enabled; we may change that later. Ken From root@MIT.EDU Thu Jan 17 22:29:53 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id WAA09756 for ; Thu, 17 Jan 2002 22:29:53 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.21.75]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id WAA18381 for ; Thu, 17 Jan 2002 22:29:52 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id WAA15992 for ; Thu, 17 Jan 2002 22:29:52 -0500 (EST) Received: (from root@localhost) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) id WAA08728; Thu, 17 Jan 2002 22:29:52 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id UAA11969; Wed, 16 Jan 2002 20:41:15 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id UAA21535; Wed, 16 Jan 2002 20:41:16 -0500 To: krbdev@MIT.EDU Subject: Re: krb5 1.2.3 compile errors References: From: Ken Raeburn Date: 16 Jan 2002 20:41:16 -0500 In-Reply-To: Message-ID: Lines: 10 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.0.107 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: > we should probably modify configure to look for xlc first, gcc second, > and then cc last. We aren't currently using a search list. If you set $CC or specify --with-cc=FOO, it uses it; otherwise, we use "cc". Maybe we should change it, but I'd recommend just going with the standard autoconf macros, and whatever they look for.... (I.e., unless there's a good reason why krb5 should be different from all other autoconf packages, fix any problems at the autoconf level.) From hartmans@MIT.EDU Fri Jan 18 10:55:47 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id KAA18875 for ; Fri, 18 Jan 2002 10:55:47 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.21.75]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id KAA17503 for ; Fri, 18 Jan 2002 10:55:46 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA23669; Fri, 18 Jan 2002 10:52:26 -0500 (EST) Received: from tir-na-nogth.mit.edu (TIR-NA-NOGTH.MIT.EDU [18.18.1.6]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id KAA24228; Fri, 18 Jan 2002 10:47:14 -0500 (EST) Received: (from hartmans@localhost) by tir-na-nogth.mit.edu (8.9.3) id KAA29107; Fri, 18 Jan 2002 10:47:13 -0500 (EST) To: Ken Raeburn Cc: krbdev@MIT.EDU Subject: Re: changing krbdev mailing list maintenance (resend) References: From: Sam Hartman Date: 18 Jan 2002 10:47:13 -0500 In-Reply-To: Ken Raeburn's message of "17 Jan 2002 17:51:58 -0500" Message-ID: Lines: 8 X-Mailer: Gnus v5.7/Emacs 20.7 Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: >>>>> "Ken" == Ken Raeburn writes: Ken> That page also has a pointer to the new (mailman-generated) Ken> archives. Older archives are still available in at least one Ken> or two places on the net, and will presumably continue to be Ken> available. I assume the discuss meeting is still subscribed and still getting new messages? From raeburn@MIT.EDU Fri Jan 18 11:29:51 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id LAA19343 for ; Fri, 18 Jan 2002 11:29:51 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id LAA17756 for ; Fri, 18 Jan 2002 11:29:51 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id LAA25143; Fri, 18 Jan 2002 11:29:50 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id LAA27009; Fri, 18 Jan 2002 11:29:50 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id LAA06494; Fri, 18 Jan 2002 11:29:50 -0500 To: Sam Hartman Cc: krbdev@MIT.EDU Subject: Re: changing krbdev mailing list maintenance (resend) References: From: Ken Raeburn In-Reply-To: Message-ID: Lines: 4 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.0.107 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Date: Fri Jan 18 11:30:01 2002 X-Original-Date: 18 Jan 2002 11:29:50 -0500 > I assume the discuss meeting is still subscribed and still getting new messages? Yes. From mjv@MIT.EDU Fri Jan 18 11:33:17 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id LAA19428 for ; Fri, 18 Jan 2002 11:33:17 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.21.75]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id LAA19183; Fri, 18 Jan 2002 11:33:17 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id LAA02152; Fri, 18 Jan 2002 11:33:16 -0500 (EST) Received: from [18.18.1.144] (ETTLINGER-TOR.MIT.EDU [18.18.1.144]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id LAA27200; Fri, 18 Jan 2002 11:33:16 -0500 (EST) Mime-Version: 1.0 X-Sender: mjv@po12.mit.edu (Unverified) Message-Id: To: krbdev@MIT.EDU From: Marshall Vale Subject: Kerberos for Macintosh 4.0b7 Released Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Date: Fri Jan 18 11:34:01 2002 X-Original-Date: Fri, 18 Jan 2002 11:33:12 -0500 The MIT MacDev team is pleased to announce the availability of Kerberos for Macintosh 4.0b7. This release is available from the MIT Kerberos site: Follow the "Getting Kerberos from MIT" link. All feedback and bug reports for Kerberos for Macintosh 4.0b7 should be sent to Overview -------- Kerberos for Macintosh 4.0 expands and improves native support for Mac OS X as well as including the new UI elements for Mac OS 9 introduced in KfM 3.5. With the inclusion of the last major new feature, Kerberos for Macintosh 4.0 has now reached beta stage. MIT Kerberos for Macintosh 4.0b7 is the twelfth public testing release. Please test early and get us your feedback as soon as possible. NOTE: This is a time-limited test release of Kerberos for Macintosh. It will expire after March 12, 2002. An updated release should be available before March 12, 2002, check at that time. Kerberos for Macintosh 4.0b7 requires a Power Macintosh with Mac OS X 10.1 or later for the Mac OS X version, or Mac OS 8.1 or later for the Mac OS 8 & 9 version. Changes since Kerberos For Macintosh 4.0b6 ------------------------------------------ * Mac OS X: Rearranged Kerberos.framework to remove server frameworks * Mac OS X: Kerberos Login dialog should launch quicker * Mac OS X: Principal Translation Plugin API now in Login Library * Mac OS X: Resource fork of preferences file preserved when it's modified by the profile library * Mac OS X: Fixed bugs where Preferences locating code might find backups instead of real Preferences file * Mac OS X: Buttons in login window now supported by authenticator * Mac OS X: Installer now works with UFS-formatted volumes * Mac OS X: Uninstall option available in Mac OS X installer * Mac OS X/9: Updated Kerberos 5 source to v1.2.3 * Mac OS X/9: Fixed Classic freezing when getting or renewing tickets in Classic ticket sharing * Mac OS X/9: Fixed CCache assertions in Classic ticket sharing * Mac OS X/9: Login Library insert realm functions reposition duplicate realm instead of leaving it in old position We have added extra debugging code that may cause asserts or errors to happen when using the Classic/Mac OS X ticket sharing feature. Please report any errors you may receive with a description of what you were doing when they happened to aid us in debugging. If you built an application that linked against the /usr/lib dylibs in KfM 4.0b2 or earlier, or the ones included with Mac OS X 10.1, you will need to re-link your application to work with the KfM 4.0b3 dylibs. Your application will no longer work with pre-4.0b3 releases, however. Ticket Sharing Between Mac OS X and Classic ------------------------------------------- In order for Kerberos tickets to be shared between Mac OS X and Classic, the same version of KfM 4.0 must be installed on both the OS X and Classic systems. When an application running under Classic needs to display the Kerberos Login dialog, the Mac OS X dialog will appear. The Mac OS 9 version of KfM 4.0 detects whether it is running under Mac OS X/Classic or regular Mac OS 9.x and automatically enables support for ticket sharing when possible. Distribution Info ----------------- At this point in time, this release is available as a single package which includes both installers and SDKs. The installers install binaries for people to use with their applications in their environments. The SDKs are for application and library programmers to add Kerberos functionality to their code or update to newer versions of the various Kerberos APIs. Source code for this release will not be made available. From ratliff@austin.ibm.com Tue Jan 22 12:30:29 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id MAA00212 for ; Tue, 22 Jan 2002 12:30:29 -0500 (EST) Received: from mg03.austin.ibm.com (mg03.austin.ibm.com [192.35.232.20]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id MAA18407; Tue, 22 Jan 2002 12:30:28 -0500 (EST) Received: from austin.ibm.com (netmail1.austin.ibm.com [9.3.7.138]) by mg03.austin.ibm.com (AIX4.3/8.9.3/8.9.3) with ESMTP id LAA04530; Tue, 22 Jan 2002 11:27:44 -0600 Received: from spiff.austin.ibm.com (spiff.austin.ibm.com [9.53.216.123]) by austin.ibm.com (AIX4.3/8.9.3/8.9.3) with ESMTP id LAA41516; Tue, 22 Jan 2002 11:30:26 -0600 From: Emily Ratliff To: Ken Raeburn cc: krbdev@mit.edu Subject: Re: thread-safe Kerberos libraries In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Date: Tue Jan 22 12:31:01 2002 X-Original-Date: Tue, 22 Jan 2002 11:31:05 -0600 (CST) On 17 Jan 2002, Ken Raeburn wrote: > This will bring up copyright and licensing issues though... will > you/IBM give ownership (copyright) of the code to MIT, or keep it, and > if the latter, what are the licensing terms? Sorry for the delay in the response, I had to check on this. Initial feedback indicates that IBM will assign the copyright to MIT. We would like it to be noted in some way that it was contributed by IBM. Emily -- Emily Ratliff IBM Linux Technology Center, Security From TSun@crt.xerox.com Wed Jan 23 10:24:27 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id KAA16329 for ; Wed, 23 Jan 2002 10:24:26 -0500 (EST) Received: from ariel.eastgw.xerox.com (ariel.xerox.com [208.140.33.25]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA04664 for ; Wed, 23 Jan 2002 10:24:26 -0500 (EST) Received: from crthub2.crt.xerox.com (crthub2.crt.xerox.com [13.138.80.5]) by ariel.eastgw.xerox.com (8.9.3/8.9.3) with ESMTP id KAA14523 for ; Wed, 23 Jan 2002 10:24:23 -0500 (EST) Received: by crthub2.crt.xerox.com with Internet Mail Service (5.5.2653.19) id ; Wed, 23 Jan 2002 10:20:55 -0500 Message-ID: From: "Sun, Tong" To: "'krbdev@mit.edu'" Subject: KDC server on NT MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Date: Wed Jan 23 10:25:00 2002 X-Original-Date: Wed, 23 Jan 2002 10:24:23 -0500 Hi, Do you have any KDC server software which runs on NT? Currently, we have your KDC server on Solaris and client on NT. We have a strong requirement to host KDC server on NT as well instead of any Unix box. Does "Kerberos 5 NT Alpha 2 Snapshot" include KDC server or it just has a client piece? Thanks for your attention. -Tong From Nicolas.Williams@ubsw.com Wed Jan 23 10:47:44 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id KAA16650 for ; Wed, 23 Jan 2002 10:47:44 -0500 (EST) Received: from gate.stm.swissbank.com (gate.stm.ubswarburg.com [151.191.1.10]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA13356 for ; Wed, 23 Jan 2002 10:47:43 -0500 (EST) Received: (from smap@localhost) by gate.stm.swissbank.com (8.8.8/8.8.8) id KAA04501; Wed, 23 Jan 2002 10:50:16 -0500 (EST) Received: from (twelve.ubswarburg.com [192.168.0.6]) by gate via smap (V2.0) id xma002528; Wed, 23 Jan 2002 10:47:26 -0500 Received: from sm0p9035pos.stm.swissbank.com (virscan3 [192.168.0.6]) by virscan3.swissbank.com (8.8.8/8.8.8) with ESMTP id KAA04016; Wed, 23 Jan 2002 10:43:52 -0500 (EST) Received: from sm2p1386swk.stm.swissbank.com (sm2p1386swk.stm.swissbank.com [151.191.93.86]) by sm0p9035pos.stm.swissbank.com (8.8.8/8.8.8) with ESMTP id KAA16136; Wed, 23 Jan 2002 10:44:16 -0500 (EST) Received: (willian@localhost) by sm2p1386swk.stm.swissbank.com (8.9.3+Sun/8.6.12) id KAA15985; Wed, 23 Jan 2002 10:43:49 -0500 (EST) From: Nicolas Williams To: "Sun, Tong" Cc: "'krbdev@mit.edu'" Subject: Re: KDC server on NT Message-ID: <20020123104348.Y27171@sm2p1386swk.wdr.com> Mail-Followup-To: "Sun, Tong" , "'krbdev@mit.edu'" References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0us In-Reply-To: ; from TSun@crt.xerox.com on Wed, Jan 23, 2002 at 10:24:23AM -0500 Precedence: list X-WDR-Disclaimer: Version $Revision: 1.15 $ Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing LIst List-Unsubscribe: , List-Archive: Date: Wed Jan 23 10:48:01 2002 X-Original-Date: Wed, 23 Jan 2002 10:43:49 -0500 MIT krb5 and Heimdal krb5 both compile fully or almost fully on Cygwin. I have not tested the KDC functionality on Cygwin, but since it compiles and links fine I'd expect that it will probably also run fine. Cheers, Nico On Wed, Jan 23, 2002 at 10:24:23AM -0500, Sun, Tong wrote: > Hi, > > Do you have any KDC server software which runs on NT? Currently, we have > your KDC server on Solaris and client on NT. We have a strong requirement to > host KDC server on NT as well instead of any Unix box. Does "Kerberos 5 NT > Alpha 2 Snapshot" include KDC server or it just has a client piece? > > Thanks for your attention. > > -Tong > > _______________________________________________ > krbdev mailing list > krbdev@mit.edu > http://mailman.mit.edu/mailman/listinfo/krbdev -- -DISCLAIMER: an automatically appended disclaimer may follow. By posting- -to a public e-mail mailing list I hereby grant permission to distribute- -and copy this message.- Visit our website at http://www.ubswarburg.com This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. This message is provided for informational purposes and should not be construed as a solicitation or offer to buy or sell any securities or related financial instruments. From raeburn@MIT.EDU Wed Jan 23 20:39:33 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id UAA23973 for ; Wed, 23 Jan 2002 20:39:33 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id UAA20607; Wed, 23 Jan 2002 20:39:33 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.21.85]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id UAA21366; Wed, 23 Jan 2002 20:39:28 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id UAA08480; Wed, 23 Jan 2002 20:39:24 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id UAA29605; Wed, 23 Jan 2002 20:39:24 -0500 To: "Sun, Tong" Cc: "'krbdev@mit.edu'" Subject: Re: KDC server on NT References: From: Ken Raeburn In-Reply-To: Message-ID: Lines: 17 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.0.107 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 23 20:40:01 2002 X-Original-Date: 23 Jan 2002 20:39:23 -0500 "Sun, Tong" writes: > Do you have any KDC server software which runs on NT? Currently, we have > your KDC server on Solaris and client on NT. We have a strong requirement to > host KDC server on NT as well instead of any Unix box. Does "Kerberos 5 NT > Alpha 2 Snapshot" include KDC server or it just has a client piece? If you can still find that version (as opposed to just its web page), please don't use it. It's *very* old, and client-side only I'm sure. The current KDC code will probably build on NT, under Cygwin if not natively. (Note though that we're not using Cygwin at MIT.) However, it's not one of the pieces we normally build on Windows, so you could encounter some problems. Are you interested in helping debug it for us? Ken From goHCI@cmu.edu Fri Jan 25 16:10:46 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA25863 for ; Fri, 25 Jan 2002 16:10:46 -0500 (EST) Received: from smtp5.andrew.cmu.edu (SMTP5.ANDREW.CMU.EDU [128.2.10.85]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id QAA06322 for ; Fri, 25 Jan 2002 16:10:46 -0500 (EST) Received: from gohci.cc.cmu.edu (GOHCI.CC.CMU.EDU [128.2.123.158]) (user=rubenc mech=KERBEROS_V4 (0 bits)) by smtp5.andrew.cmu.edu (8.12.2.Beta3/8.12.2.Beta3) with ESMTP id g0PLAiPl002995 for ; Fri, 25 Jan 2002 16:10:45 -0500 From: Ruben Carbonell To: krbdev@mit.edu Subject: Kerb v4 for MacOS X Message-ID: <1609375.1011975044@gohci.cc.cmu.edu> Originator-Info: login-token=Mulberry:01qVmjRBvOBanpp/K79K8kwPS2J2MNeBl8NxbO0anfuQ==; token_authority=postmaster@andrew.cmu.edu X-Mailer: Mulberry/2.1.2 (Mac OS X) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Fri Jan 25 16:11:00 2002 X-Original-Date: Fri, 25 Jan 2002 16:10:44 -0500 Hi, 2 suggestions: 1) Is it possible to add the "Change Password" directly in the Kerberos menu/icon? (both the classic and carbon versions) 2) I wonder if there can't be some icon on OS X when Kerberos for Mac is running? For example, Stuffit's Magic Menu has a little icon-menu in the upper right of OS X, next to the Display, Sound and clock icon-menus. I understand why you may not want to install something in the Dock by default. The reason behind this is because 2nd request is because often when users have kerberos / login problems, we trouble- shoot by teasing apart kerberos issues vs other network programs. So we see if they can get tickets first; novice users won't be so easy to walk through finding the Kerberos application and running it to get tickets. Thanks on such a great job with this app! :) Ruben Ruben Carbonell Mac Consultant Carnegie Mellon University From meeroh@MIT.EDU Fri Jan 25 16:18:29 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA25978 for ; Fri, 25 Jan 2002 16:18:29 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.7.72]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA10741; Fri, 25 Jan 2002 16:18:29 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA12027; Fri, 25 Jan 2002 16:18:28 -0500 (EST) Received: from [18.18.6.67] (DONT-GRIEVE-ADMIRAL.MIT.EDU [18.18.1.86]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id QAA21726; Fri, 25 Jan 2002 16:18:28 -0500 (EST) Mime-Version: 1.0 X-Sender: meeroh@po12 (Unverified) Message-Id: In-Reply-To: <1609375.1011975044@gohci.cc.cmu.edu> References: <1609375.1011975044@gohci.cc.cmu.edu> To: Ruben Carbonell , krbdev@MIT.EDU From: Miro Jurisic Subject: Re: Kerb v4 for MacOS X Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Fri Jan 25 16:19:00 2002 X-Original-Date: Fri, 25 Jan 2002 16:17:33 -0500 >1) Is it possible to add the "Change Password" directly in > the Kerberos menu/icon? (both the classic and carbon versions) Probably not. How often do you need to use that? >2) I wonder if there can't be some icon on OS X when Kerberos > for Mac is running? What do you mean by "Kerberos is running"? > The reason behind this is because 2nd request is because > often when users have kerberos / login problems, we trouble- > shoot by teasing apart kerberos issues vs other network > programs. So we see if they can get tickets first; novice > users won't be so easy to walk through finding the Kerberos > application and running it to get tickets. I am not sure how hard it is to tell them to go to the Finder, go to the Applications folder, double-click on Kerberos, click on "Get Tickets". Also, note that Apple has not published a mechanism for menu additions yet, so anything we did would be unlikely to continue working in the future. That's the main reason why we added the Dock feedback to the Kerberos application icon, but no menu addition. >Thanks on such a great job with this app! Thanks! :-) meeroh -- | MIT I/S Mac developer | KB1FMP "Well, I must endure the presence of two or three caterpillars if I wish to become acquainted with the butterflies." -- Antoine de Saint-Exupery, "The Little Prince" From goHCI@cmu.edu Fri Jan 25 16:58:56 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA26501 for ; Fri, 25 Jan 2002 16:58:56 -0500 (EST) Received: from smtp5.andrew.cmu.edu (SMTP5.ANDREW.CMU.EDU [128.2.10.85]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA23971; Fri, 25 Jan 2002 16:58:55 -0500 (EST) Received: from gohci.cc.cmu.edu (GOHCI.CC.CMU.EDU [128.2.123.158]) (user=rubenc mech=KERBEROS_V4 (0 bits)) by smtp5.andrew.cmu.edu (8.12.2.Beta3/8.12.2.Beta3) with ESMTP id g0PLwSPl005365; Fri, 25 Jan 2002 16:58:55 -0500 From: Ruben Carbonell To: Miro Jurisic cc: krbdev@MIT.EDU Subject: Re: Kerb v4 for MacOS X Message-ID: <1781246.1011977909@gohci.cc.cmu.edu> In-Reply-To: References: <1609375.1011975044@gohci.cc.cmu.edu> Originator-Info: login-token=Mulberry:01ZxvAmNmQIv2naQ8PsnFBFLJ4RLfLOjbQ9dSQ7v2dew==; token_authority=postmaster@andrew.cmu.edu X-Mailer: Mulberry/2.1.2 (Mac OS X) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Fri Jan 25 16:59:01 2002 X-Original-Date: Fri, 25 Jan 2002 16:58:29 -0500 Hi again, >> 1) Is it possible to add the "Change Password" directly in >> the Kerberos menu/icon? (both the classic and carbon versions) > > Probably not. How often do you need to use that? Currently, we're using this pretty often. CMU is upgrading lots of servers to Kerb5 from Kerb4. Users who hadn't updated their password (via changing their password) recently would not be able to access new kerb5 services (as their password entry contained just an old kerb4 entry). Anyhow, the technical reasons are a bit past me. :) I could ask one of our systems developers to explain if you're curious. We also have started running "password crackers" against our /etc/passwd to check for easy-to-guess/crack passwords. And we encourage users to change passwords if guessed. >> 2) I wonder if there can't be some icon on OS X when Kerberos >> for Mac is running? > > What do you mean by "Kerberos is running"? So let me re-phrase :) : We like people to easily know if they have current tickets or not. The KfM for classic always shows by default whether the user has current tickets (via the menu icon) If there's documentation somewhere on how I can configure the installer to place & "run" Kerberos by default on an install, that would rock! So hence, by "run", I mean is an active program on OS X (with that silly triangle under the icon in the Dock). I could be mistaken, but if you open the Kerberos application, you can choose "Keep in Dock", but when the Application is not open, active, and running, the icon will show a YELLOW key whether there are active tickets or not. 2 new requests from our other Mac expert (who also said you guys rock and did a great job with Kerberos for Mac) - we're just full of praise: 3) Kerberos for Mac generates a "Service Expired" message if the Time is out of bounds / off synch. Users get confused by this: Could the error message be changed to something with the word "time" in it; even Time Out of Bounds is fine. Sure, it would be great if Kerberos could tie into the System Prefs and either let the user update the time immediately or take them to the Date & Time prefs. But that's asking a lot. 4) If someone deletes their Kerberos Preferences, they lose their ANDREW.CMU.EDU or CS.CMU.EDU realm and Kerberos reverts to an MIT.EDU server. Is this possible to customize, so CMU's distribution has the default set to ANDREW.CMU.EDU ? :) Once again thank you! Have a great weekend, Ruben Ruben Carbonell Mac Consultant Carnegie Mellon University From meeroh@MIT.EDU Fri Jan 25 17:26:18 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id RAA26879 for ; Fri, 25 Jan 2002 17:26:18 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id RAA01945; Fri, 25 Jan 2002 17:26:17 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id RAA02342; Fri, 25 Jan 2002 17:26:17 -0500 (EST) Received: from [18.18.6.67] (DONT-GRIEVE-ADMIRAL.MIT.EDU [18.18.1.86]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id RAA13948; Fri, 25 Jan 2002 17:26:16 -0500 (EST) Mime-Version: 1.0 X-Sender: meeroh@po12 (Unverified) Message-Id: In-Reply-To: <1781246.1011977909@gohci.cc.cmu.edu> References: <1609375.1011975044@gohci.cc.cmu.edu> <1781246.1011977909@gohci.cc.cmu.edu> To: Ruben Carbonell From: Miro Jurisic Subject: Re: Kerb v4 for MacOS X Cc: krbdev@MIT.EDU Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Fri Jan 25 17:27:00 2002 X-Original-Date: Fri, 25 Jan 2002 17:24:20 -0500 >Currently, we're using this pretty often. CMU is upgrading lots >of servers to Kerb5 from Kerb4. Users who hadn't updated their >password (via changing their password) recently would not be able >to access new kerb5 services (as their password entry contained >just an old kerb4 entry). Anyhow, the technical reasons are a >bit past me. :) I could ask one of our systems developers to >explain if you're curious. > >We also have started running "password crackers" against our >/etc/passwd to check for easy-to-guess/crack passwords. And >we encourage users to change passwords if guessed. My personal opinion is that change password is an operation not done frequently enough to warrant putting in the Kerberos menu. I understand the v4 -> v5 transition issue, but that's only going to happen once for any given user. Maybe it's possible that you could convince me that this would be valuable at CMU, but I would still not be convinced that this is something that's useful in general. The whole purpose of the Menu and the Control Strip is to provide commonly used functionality. For example, you can compare this with the Energy Saver control panel and Control Strip module, where the CSM gives you the basic functionality used often, and an option to open the Control Panel if you need more control (note that Kerberos Menu and Kerberos Control Strip module both allow you to open the Kerberos Control Panel on 9). I think that the answer here is that you have a 2-step procedure (on Mac OS 9) for changing password: select "Open Kerberos Control Panel" from Kerberos Menu and then click on "Change Password". I am having a hard time believing that this is either hard to explain to users or hard for users to do when they need to change their password. On Mac OS X, if you are running the Kerberos application, you can close its main window, and then all you will have is the Dock icon which shows you the current status. If you click on that icon, the main window opens, and you can then click on the "Change Password" button. So, if you are running the Kerberos application, it's again a 2-step process -- click on the dock icon, click on "Change Password". We are not opposed to a Kerberos Menu on Mac OS X, however Apple has not provided the documentation for us to do that, and we have focused on a number of more important issues. Don't forget that the Kerberos Menu was completely absent in KfM 3.0 on Mac OS 9, and only came back in 3.5 -- I would not be surprised if something similar happens on Mac OS X. We certainly will not hold up 4.0 final release for Kerberos Menu on Mac OS X :-) >So let me re-phrase :) : We like people to easily know if they >have current tickets or not. The KfM for classic always shows >by default whether the user has current tickets (via the menu >icon) If you run the Kerberos Application on Mac OS X, you get that display in the dock. Which brings us to your next question... >If there's documentation somewhere on how I can configure the >installer to place & "run" Kerberos by default on an install, >that would rock! There is no way to configure the installer to do this right now. Without further investigation I can't tell you whether we can or want to do this right now, so I can't tell you much here :-) > So hence, by "run", I mean is an active program >on OS X (with that silly triangle under the icon in the Dock). >I could be mistaken, but if you open the Kerberos application, >you can choose "Keep in Dock", but when the Application is not >open, active, and running, the icon will show a YELLOW key whether >there are active tickets or not. This is a good point. We'll have to think about this. I agree it can be confusing. >2 new requests from our other Mac expert (who also said you guys >rock and did a great job with Kerberos for Mac) - we're just >full of praise: We really appreciate that :-) >3) Kerberos for Mac generates a "Service Expired" message if the >Time is out of bounds / off synch. Users get confused by this: Could >the error message be changed to something with the word "time" in >it; even Time Out of Bounds is fine. That's interesting. Are you using any form of preauthentication? I could have sworn we verified this and it worked fine in our setup. >Sure, it would be great if Kerberos could tie into the System Prefs >and either let the user update the time immediately or take them to >the Date & Time prefs. But that's asking a lot. It's really none of our business whether your users have time set right or not. We can't give them useful instructions for what to _do_ once in the D&T prefs, because that really depends on what CMU wants them to do. Do you want them to use a specific time server? Setup time by hand? Something else? The best answer is probably for CMU to choose a policy for what the users should do, document the policy, and provide a simple app the users can run to setup their machines according to that policy. I agree that the error message is suboptimal, and we can look into that, but I definitely know that there is one preauthentication mechanism which makes it impossible to detect time out of bounds errors with 100% reliability. >4) If someone deletes their Kerberos Preferences, they lose their >ANDREW.CMU.EDU or CS.CMU.EDU realm and Kerberos reverts to an MIT.EDU >server. Is this possible to customize, so CMU's distribution has >the default set to ANDREW.CMU.EDU ? :) Yes, you can edit /System/Library/Frameworks/Kerberos.framework/Frameworks/KerberosPreferences.framework/Resources/DefaultRealmsConfiguration after the installer installs it. meeroh -- | MIT I/S Mac developer | KB1FMP "Well, I must endure the presence of two or three caterpillars if I wish to become acquainted with the butterflies." -- Antoine de Saint-Exupery, "The Little Prince" From jwe@unc.edu Sun Jan 27 17:17:39 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id RAA01797 for ; Sun, 27 Jan 2002 17:17:38 -0500 (EST) Received: from Mail6.nc.rr.com (fe6.southeast.rr.com [24.93.67.53]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id RAA26924 for ; Sun, 27 Jan 2002 17:17:37 -0500 (EST) Received: from [10.0.1.201] ([24.88.249.223]) by Mail6.nc.rr.com with Microsoft SMTPSVC(5.5.1877.687.68); Sun, 27 Jan 2002 17:17:30 -0500 User-Agent: Microsoft-Entourage/10.0.0.1429 Subject: Kerberos for Mac issues- From: "John W. Eschelbach" To: Message-ID: Mime-version: 1.0 Content-type: multipart/alternative; boundary="B_3094996655_7667585" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Sun Jan 27 17:18:01 2002 X-Original-Date: Sun, 27 Jan 2002 17:17:34 -0500 > This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. --B_3094996655_7667585 Content-type: text/plain; charset="ISO-8859-1" Content-transfer-encoding: quoted-printable Hello, I have been playing with KfM for quite a while now and have not been able t= o load my realms as described in the online documentation. I am using a PowerBook G3 Firewire 400 running Mac OS X 10.1.2. The first issue I noticed was that when running the installer, the edu.mit.Kerberos file defaults to being a Microsoft Entourage Preference file. I also have Office X installed and running. I edited the file in BBEdit to only have my realms configuration information. I saved the file without changing the file type or creator. I have also saved it as a BBEdi= t file and a generic text file, but am still unable to Edit my Favorite realm= . When running the Kerberos application, I have tried to Edit My Favorite realm in the preference, but the only realm that is listed is the ATHENA.MIT.EDU realm. When selecting the =B3Edit My Favorites=B2, nothing happens. I have checked the preference file multiple times and am confused where the application is even getting the ATHENA realm from. I assume all of my problems stem from not being able to load my realm correctly. Any suggestions would be greatly appreciated. Thank you, John W. Eschelbach Department of Chemistry University of North Carolina Chapel Hill, NC 27599-3290 E-mail: jwe@unc.edu Sent using the Entourage X Test Drive. --B_3094996655_7667585 Content-type: text/html; charset="US-ASCII" Content-transfer-encoding: quoted-printable Kerberos for Mac issues- Hello,

I have been playing with KfM for quite a while now and have not been able t= o load my realms as described in the online documentation.

I am using  a PowerBook G3 Firewire 400 running Mac OS X 10.1.2.

The first issue I noticed was that when running the installer, the edu.mit.= Kerberos file defaults to being a Microsoft Entourage Preference file.  = ;I also have Office X installed and running.  I edited the file in BBEd= it to only have my realms configuration information.  I saved the file = without changing the file type or creator.  I have also saved it as a B= BEdit file and a generic text file, but am still unable to Edit my Favorite = realm.

When running the Kerberos application, I have tried to Edit My Favorite rea= lm in the preference, but the only realm that is listed is the ATHENA.MIT.ED= U realm.  When selecting the “Edit My Favorites”, nothing h= appens.  I have checked the preference file multiple times and am confu= sed where the application is even getting the ATHENA realm from.

I assume all of my problems stem from not being able to load my realm corre= ctly.

Any suggestions would be greatly appreciated.

Thank you,


John W. Eschelbach
Department of Chemistry
University of North Carolina
Chapel Hill, NC  27599-3290
E-mail:  jwe@unc.edu


Sent using the Entourage X Test Drive.

--B_3094996655_7667585-- From smcguire@MIT.EDU Mon Jan 28 10:57:43 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id KAA14759 for ; Mon, 28 Jan 2002 10:57:42 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA00504; Mon, 28 Jan 2002 10:57:42 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA19363; Mon, 28 Jan 2002 10:57:41 -0500 (EST) Received: from [18.18.1.160] (NOME-KING.MIT.EDU [18.18.1.160]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id KAA12053; Mon, 28 Jan 2002 10:57:41 -0500 (EST) Mime-Version: 1.0 X-Sender: eudtest@hesiod Message-Id: In-Reply-To: References: To: "John W. Eschelbach" , From: Scott McGuire Subject: Re: Kerberos for Mac issues Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Mon Jan 28 10:58:01 2002 X-Original-Date: Mon, 28 Jan 2002 10:57:34 -0500 At 5:17 PM -0500 1/27/02, John W. Eschelbach wrote: >I have been playing with KfM for quite a while now and have not been >able to load my realms as described in the online documentation. > >The first issue I noticed was that when running the installer, the >edu.mit.Kerberos file defaults to being a Microsoft Entourage >Preference file. I also have Office X installed and running. I >edited the file in BBEdit to only have my realms configuration >information. I saved the file without changing the file type or >creator. I have also saved it as a BBEdit file and a generic text >file, but am still unable to Edit my Favorite realm. > >When running the Kerberos application, I have tried to Edit My >Favorite realm in the preference, but the only realm that is listed >is the ATHENA.MIT.EDU realm. When selecting the "Edit My >Favorites", nothing happens. I have checked the preference file >multiple times and am confused where the application is even getting >the ATHENA realm from. > >I assume all of my problems stem from not being able to load my >realm correctly. ATHENA.MIT.EDU is the default contents of the favorite realms list right after you install; we have to have an entry there, and we cannot know what your realm is until you edit the edu.mit.Kerberos file, so we default to ATHENA. Once KfM is locating your preferences file, Edit Favorite Realms should show them (and your site's default realm should be added to the favorite realms automatically) and allow you to remove ATHENA. The fact that Mac OS X shows your prefs file as an Entourage preferences file is probably not be relevant; unfortunately Mac OS X is easily confused about who preferences files belong to. My system shows my edu.mit.Kerberos as a BBEdit prefs file, even though the file type/creator are correct for the Kerberos prefs file. It does sound like KfM is having trouble finding the preferences file you edited. There are a number of possible reasons for this. Please do the following: (1) Make sure you are using the latest release of KfM. We released KfM 4.0b7 about 10 days ago, and it fixes some preferences locating bugs. (2) Make sure you are editing the edu.mit.Kerberos file in /Library/Preferences, not the one in /Users/userid/Library/Preferences . In fact, throw out any that you find in /Users/userid/Library/Preferences . (3) Make sure there are no "backup" copies of the edu.mit.Kerberos preferences file (such as files named ~edu.mit.Kerberos or edu.mit.Kerberos.bak) in the /Library/Preferences or /Users/userid/Library/Preferences directories. If there are, trash them. Let us know if this helps. -- Scott McGuire / smcguire@mit.edu MIT Information Systems Macintosh Developer From bbense@shred.stanford.edu Mon Jan 28 16:37:05 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA18943 for ; Mon, 28 Jan 2002 16:37:05 -0500 (EST) Received: from shred.stanford.edu (shred.Stanford.EDU [171.64.13.91]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id QAA15381 for ; Mon, 28 Jan 2002 16:37:04 -0500 (EST) Received: from localhost (bbense@localhost) by shred.stanford.edu (8.11.6.Beta0/8.10.0.PreAlpha1) with ESMTP id g0SLb3O02343 for ; Mon, 28 Jan 2002 13:37:03 -0800 (PST) From: "Booker C. Bense" To: krbdev@mit.edu Subject: Status of compile_et In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Mon Jan 28 16:38:00 2002 X-Original-Date: Mon, 28 Jan 2002 13:37:03 -0800 (PST) - What is the reason compile_et is built but not installed in the krb5 src tree? If I have a program that needs it, is there a reason not to use it. - Booker C. Bense From raeburn@MIT.EDU Mon Jan 28 16:46:58 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA19078 for ; Mon, 28 Jan 2002 16:46:58 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id QAA19017; Mon, 28 Jan 2002 16:46:58 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.7.71]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA29310; Mon, 28 Jan 2002 16:44:09 -0500 (EST) Received: from all-in-one.mit.edu (ALL-IN-ONE.MIT.EDU [18.18.1.71]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id QAA26274; Mon, 28 Jan 2002 16:44:08 -0500 (EST) Received: (from raeburn@localhost) by all-in-one.mit.edu (8.9.3) id QAA32111; Mon, 28 Jan 2002 16:44:09 -0500 To: "Booker C. Bense" Cc: krbdev@MIT.EDU Subject: Re: Status of compile_et References: From: Ken Raeburn In-Reply-To: Message-ID: Lines: 12 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.0.107 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Mon Jan 28 16:47:01 2002 X-Original-Date: 28 Jan 2002 16:44:09 -0500 "Booker C. Bense" writes: > - What is the reason compile_et is built but not installed in > the krb5 src tree? If I have a program that needs it, is there > a reason not to use it. Already fixed for 1.3, just not in the 1.2.x branch. Also in the plans for 1.3 but not done yet, using an installed system version of com_err and ss if desired (e.g., on Linux) instead of the in-tree versions. Ken From lessing.3@osu.edu Tue Jan 29 13:00:26 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id NAA03902 for ; Tue, 29 Jan 2002 13:00:26 -0500 (EST) Received: from mail1.uts.ohio-state.edu (mail1.uts.ohio-state.edu [128.146.214.30]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id NAA06849; Tue, 29 Jan 2002 13:00:25 -0500 (EST) Received: from dhcp-242-214.uts.ohio-state.edu (dhcp-242-214.uts.ohio-state.edu [128.146.242.214]) by mail1.uts.ohio-state.edu (8.9.3/8.9.3) with ESMTP id NAA01982; Tue, 29 Jan 2002 13:00:24 -0500 (EST) Subject: Kerberos for OS 10.1 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v480) Cc: macdev@mit.edu To: krbdev@mit.edu From: Kori Lessing Content-Transfer-Encoding: 7bit Message-Id: <12A0BA74-14E2-11D6-8303-00039319427E@osu.edu> X-Mailer: Apple Mail (2.480) Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Tue Jan 29 13:01:00 2002 X-Original-Date: Tue, 29 Jan 2002 13:00:26 -0500 Hi MIT, I use Eudora 5.1 for OSx for email. Today It fails to launch with the message "This pre-release version of MIT kerberos for Macintosh has expired. Eudora launch fails because of a shared library error :4 <> <>" I am on 10.1.2 Is there a later version that I should have? The Kerberos Application says it is version 4.0a19 Thanks, Ms. Kori Lessing Systems Development Engineer Application Development Systems Office of Information Technology 1121 Kinnear Rd 614-247-6121 lessing.3@osu.edu From smcguire@MIT.EDU Tue Jan 29 13:04:00 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id NAA03963 for ; Tue, 29 Jan 2002 13:04:00 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.7.72]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id NAA24462; Tue, 29 Jan 2002 13:03:54 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id NAA13672; Tue, 29 Jan 2002 13:03:53 -0500 (EST) Received: from [18.18.1.160] (NOME-KING.MIT.EDU [18.18.1.160]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id NAA10589; Tue, 29 Jan 2002 13:03:53 -0500 (EST) Mime-Version: 1.0 Message-Id: In-Reply-To: <12A0BA74-14E2-11D6-8303-00039319427E@osu.edu> References: <12A0BA74-14E2-11D6-8303-00039319427E@osu.edu> To: Kori Lessing , krbdev@MIT.EDU From: Scott McGuire Subject: Re: Kerberos for OS 10.1 Cc: macdev@MIT.EDU Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Tue Jan 29 13:05:01 2002 X-Original-Date: Tue, 29 Jan 2002 13:03:50 -0500 At 1:00 PM -0500 1/29/02, Kori Lessing wrote: > I use Eudora 5.1 for OSx for email. Today It fails to launch >with the message "This pre-release version of MIT kerberos for >Macintosh has expired. >Eudora launch fails because of a shared library error >:4 <> <>" > I am on 10.1.2 Is there a later version that I should have? The >Kerberos Application says it is version 4.0a19 You can download the latest version of Kerberos for Macintosh from: Follow the instructions on that page, and look for Kerberos for Macintosh 4.0b7. -- Scott McGuire / smcguire@mit.edu MIT Information Systems Macintosh Developer From lessing.3@osu.edu Tue Jan 29 13:16:55 2002 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id NAA04143 for ; Tue, 29 Jan 2002 13:16:55 -0500 (EST) Received: from mail3.uts.ohio-state.edu (mail3.uts.ohio-state.edu [128.146.214.32]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id NAA11490; Tue, 29 Jan 2002 13:11:49 -0500 (EST) Received: from dhcp-242-214.uts.ohio-state.edu (dhcp-242-214.uts.ohio-state.edu [128.146.242.214]) by mail3.uts.ohio-state.edu (8.9.3/8.9.3) with ESMTP id NAA11168; Tue, 29 Jan 2002 13:11:47 -0500 (EST) Mime-Version: 1.0 (Apple Message framework v480) Content-Type: text/plain; charset=US-ASCII; format=flowed Subject: Fwd: Kerberos for OS 10.1 From: Kori Lessing To: krbdev@mit.edu, macdev@mit.edu Content-Transfer-Encoding: 7bit Message-Id: X-Mailer: Apple Mail (2.480) Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Tue Jan 29 13:17:00 2002 X-Original-Date: Tue, 29 Jan 2002 13:11:48 -0500 Sorry, I found the newer version on your site and installed it okay. Thanks, Kori Begin forwarded message: > From: Kori Lessing > Date: Tue Jan 29, 2002 01:00:26 PM US/Eastern > To: krbdev@mit.edu > Cc: macdev@mit.edu > Subject: Kerberos for OS 10.1 > > Hi MIT, > I use Eudora 5.1 for OSx for email. Today It fails to launch with > the message "This pre-release version of MIT kerberos for Macintosh has > expired. > Eudora launch fails because of a shared library error > :4 <> <>" > I am on 10.1.2 Is there a later version that I should have? The > Kerberos Application says it is version 4.0a19 > Thanks, > From bounce-otcjournal-new-3719211@lyris.otcjournal.com Tue Jan 29 15:43:25 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id PAA05987 for ; Tue, 29 Jan 2002 15:43:25 -0500 (EST) Received: from lyris.otcjournal.com (lyris.otcjournal.com [216.105.36.68]) by fort-point-station.mit.edu (8.9.2/8.9.2) with SMTP id PAA02003 for ; Tue, 29 Jan 2002 15:43:24 -0500 (EST) From: "OTCJournal ListServer" Message-Id: X-Authentication-Warning: listserv.otcjournal.com: mail set sender to info@otcjournal.com using -f To: krbdev@mit.edu X-Mailer: Mozilla 4.75 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 Subject: Internet Investing Resource Content-Type: multipart/alternative; boundary="------------4C9006809691A039D8AD8595" List-Owner: X-List-Host: OTCJournal Newsletter Reply-To: "OTCJournal Newsletter" X-Message-Id: <200201291847.KAA31755@listserv.otcjournal.com> Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Tue Jan 29 15:44:00 2002 X-Original-Date: Tue, 29 Jan 2002 10:47:23 -0800 --------------4C9006809691A039D8AD8595 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit If you are reading this message in plaintext or if you have an AOL address you must click on this link: http://listserv.otcjournal.com/new/ and wait for a web page to automatically open up to properly read this newsletter. You can unsubscribe from this list at any time by Clicking Here and HITTING SEND. If you are having difficulty removing yourself or wish to change your address please go to http://listserv.otcjournal.com/opt.cgi?email=krbdev@mit.edu&list=otcjournal-new. [Image] [Image][Image] [Image] [Image]January 29 , 2002[Image] [Image]Volume V, Issue 1[Image] Email : info@otcjournal.com URL : http://www.otcjournal.com To NEW OTC Journal Members: Your name recently came to us as a subscriber to on-line investment news letters. As such, we are extending you a free subscription to the OTC Journal. If you do not wish to receive our FREE NEWSLETTER, simply follow the directions at the top of this page and your e-mail address will be immediately removed. Please remove yourself if you do not wish to receive our newsletter as it is not our intention to invade your privacy. You can always choose to have your name removed from our Member List simply by going to our home page at http://www.otcjournal.com, and clicking on Change or Remove Your E-Mail on the left hand menu bar. You should also read our privacy policy which states that your E-Mail address will be kept strictly confidential. The OTC Journal site is an investment portal with extremely unique investment tools and resources. There is no charge for membership to the site. Please visit our home page at WWW.OTC Journal.com. The primary focus of the OTC Journal is to provide our members with information about publicly traded small and micro cap companies that you won't read about in the main stream Wall Street media. We identify these companies in their early stage of development and provide you with as much information as possible through our monthly e-mail company profiles. Updates and news releases are provided via e-mail regularly for our members. If you have little or no experience in investing in early stage company please take the time to read our section entitled Are Microcaps For You?, which can be found at our home page. Our best performing profile of 1999 was NetSol International (NASDAQ: NTWK). We originally profiled the company at $3.88 on January 15, 1999. The stock hit a closing high of $75 in March of 2000 for an 1800% return. For our complete track record visit our Profile Tracking button on our home page. Every edition we ever publish is found in the Archive Section. The following is a list of the features that you will find at the OTC Journal Home Page. * Trading Alerts- Short Term trading ideas with Entry Level, Target Price, and Stop Loss. Excellent tool for short term trading ideas. * E-Mail Profiles on Companies that we feel could provide you with substantial returns over a one to two year period of time. Click Here to read our current profile. * IPO Alert- This section is live and has a list of upcoming IPOs that our members have the opportunity to participate in. The section will have a list of upcoming IPOs and direct contact to a stock broker that has shares allocated for our members. * Profile Performance Tracking- Gives you up to the day price performance of our profiled companies dating back to the beginning of 1999 based on closing prices. * Dr Richard Geist's Column On the Psychology of Investing- Dr. Geist is a Doctorate in Psychology from Harvard University and is an instructor in the department of Psychiatry at Harvard Medical School. Dr. Geist's recommendations have been featured in Business Week, Fortune Magazine, Bull and Bear, and The Wall Street Journal. His market commentary and thoughts on the psychology of investing have also been quoted in Barron's, Harvard Magazine, Financial Planning Magazine, Forbes, New York Times, and USA Today; and he has appeared on CNN, CNBC, PBS, and Bloomberg Television. Dr. Geist has also been a special guest on Louis Rukeyser's Wall Street Week. Click Here to go to the archive of columns. * Testimonial Section- Read comments from our long term members. However, the major theme of our newsletter will continue to be ideas in small and microcap stocks which we believe have the potential to provide outstanding returns for investors with a one to two year investment horizon. ------------------------------------------------------------------------ This category of stocks is very risky, and you should never invest more money than you can afford to lose. In addition, you should make an effort to verify through third party sources any claims that we make about the companies that we represent. ------------------------------------------------------------------------ The OTC Journal is a proud partner of the SwingWire.com Online Investment Community. A next generation Online Analyst Exchange providing Members the ability to search, review, track and monitor some of the Internet's best Online CAs (CyberAnalysts). Members have the opportunity to potentially achieve higher returns by viewing top performing portfolios and receiving real-time alerts from favorite CAs. SwingWire.com also has a lucrative incentive model for experienced investors and traders who consistently outperform the market. Share market ideas with other like-minded investors, establish a proven track record, provide insightful commentary, attract followers and ultimately become one of the Internet's highest paid and most sought after CyberAnalysts! Click here to receive your FREE 30-Day Trial Membership with no further obligation. Sign Up Today! Disclaimer The OTCjournal.com Newsletter is an independent electronic publication committed to providing our readers with factual information on selected publicly traded companies. All companies are chosen on the basis of certain financial analysis and other pertinent criteria with a view toward maximizing the upside potential for investors while minimizing the downside risk, whenever possible. Moreover, as detailed below, this publication accepts compensation from certain of the companies which it features. Likewise, this newsletter is owned by MarketByte, LLC. To the degrees enumerated herein, this newsletter should not be regarded as an independent publication. Click Here to view our compensation on every company we have ever covered, or visit the following web address: http://www.otcjournal.com/disclaimer.html for our full profiles and http://www.otcjournal.com/trading-alerts/disclaimer.html for Trading Alerts. All statements and expressions are the sole opinions of the editors and are subject to change without notice. A profile, description, or other mention of a company in the newsletter is neither an offer nor solicitation to buy or sell any securities mentioned. While we believe all sources of information to be factual and reliable, in no way do we represent or guarantee the accuracy thereof, nor the statements made herein. The editor, members of the editor's family, and/or entities with which they are affiliated, are forbidden by company policy to own, buy, sell or otherwise trade stock for their own benefit in the companies who appear in the publication. unless specifically disclosed in the newsletter. The profiles, critiques, and other editorial content of the OTCjournal.com may contain forward-looking statements relating to the expected capabilities of the companies mentioned herein. THE READER SHOULD VERIFY ALL CLAIMS AND DO THEIR OWN DUE DILIGENCE BEFORE INVESTING IN ANY SECURITIES MENTIONED. INVESTING IN SECURITIES IS SPECULATIVE AND CARRIES A HIGH DEGREE OF RISK. THE INFORMATION FOUND IN THIS PROFILE IS PROTECTED BY THE COPYRIGHT LAWS OF THE UNITED STATES AND MAY NOT BE COPIED, OR REPRODUCED IN ANY WAY WITHOUT THE EXPRESSED, WRITTEN CONSENT OF THE EDITORS OF OTCjournal.com. We encourage our readers to invest carefully and read the investor information available at the web sites of the Securities and Exchange Commission ("SEC") at http://www.sec.govand/or the National Association of Securities Dealers ("NASD") at http://www.nasd.com. We also strongly recommend that you read the SEC advisory to investors concerning Internet Stock Fraud, which can be found at http://www.sec.gov/consumer/cyberfr.htm. Readers can review all public filings by companies at the SEC's EDGAR page. The NASD has published information on how to invest carefully at its web site. You can unsubscribe from this list at any time by Clicking Here and HITTING SEND. If you are having difficulty removing yourself or wish to change your address please go to http://listserv.otcjournal.com/opt.cgi?email=krbdev@mit.edu&list=otcjournal-new. [Image] [Image] [Image] [Image] [Image] [Image] [Image] [Image] [Image] [Image] --- You are currently subscribed to otcjournal-new as: krbdev@mit.edu To unsubscribe send a blank email to leave-otcjournal-new-3719211X@lyris.otcjournal.com --------------4C9006809691A039D8AD8595 Content-Type: text/html; charset=us-ascii Content-Transfer-Encoding: 7bit If you are reading this message in plaintext or if you have an AOL address you must click on this link: http://listserv.otcjournal.com/new/ and wait for a web page to automatically open up to properly read this newsletter.

You can unsubscribe from this list at any time by Clicking Here and HITTING SEND. If you are having difficulty removing yourself or wish to change your address please go to http://listserv.otcjournal.com/opt.cgi?email=krbdev@mit.edu&list=otcjournal-new.
January 29 , 2002
Volume V, Issue 1
Email : info@otcjournal.com
URL : http://www.otcjournal.com

To NEW OTC Journal Members:

Your  name recently came to us as a subscriber to on-line investment news letters. As such, we are extending you a free subscription to the OTC Journal. If you do not wish to receive our FREE NEWSLETTER, simply follow the directions at the top of this page and your e-mail address will be immediately removed. Please remove yourself if  you do not wish to receive our newsletter as it is not our intention to invade your privacy.

You can always choose to have your name removed from our Member List simply by going to our home page at http://www.otcjournal.com, and clicking on Change or Remove Your E-Mail on the left hand menu bar.  You should also read our privacy policy which states that your E-Mail address will be kept strictly confidential.

The OTC Journal site is an investment portal with extremely unique investment tools and resources.  There is no charge for membership to the site.  Please visit our home page at WWW.OTC Journal.com.

The primary focus of the OTC Journal is to provide our members with information about publicly traded small and micro cap companies that you won't read about in the main stream Wall Street media.  We identify these companies in their early stage of development and provide you with as much information as possible through our monthly e-mail company profiles.  Updates and news releases are provided via e-mail regularly for our members.  If you have little or no experience in investing in early stage company please take the time to read our section entitled Are Microcaps For You?, which can be found at our home page.

Our best performing profile of 1999 was NetSol International (NASDAQ: NTWK).  We originally profiled the company at $3.88 on January 15, 1999.  The stock hit a closing high of $75 in March of 2000 for an 1800% return.  For our complete track record visit our Profile Tracking button on our home page.  Every edition we ever publish is found in the Archive Section.

The following is a list of the features that you will find at the OTC Journal Home Page.

  • Trading Alerts- Short Term trading ideas with Entry Level, Target Price, and Stop Loss. Excellent tool for short term trading ideas.
  • E-Mail Profiles on Companies that we feel could provide you with substantial returns over a one to two year period of timeClick Here to read our current profile.
  • IPO Alert-  This section is live and has a list of upcoming IPOs that our members have the opportunity to participate in.  The section will have a list of upcoming IPOs and direct contact to a stock broker that has shares allocated for our members.
  • Profile Performance Tracking- Gives you up to the day price performance of our profiled companies dating back to the beginning of 1999 based on closing prices.
  • Dr Richard Geist's Column On the Psychology of Investing-  Dr. Geist is a Doctorate in Psychology from Harvard University and is an instructor in the department of Psychiatry at Harvard Medical School.  Dr. Geist's recommendations have been featured in Business Week, Fortune Magazine,  Bull and Bear, and The Wall Street Journal.  His market commentary and thoughts on the psychology of investing have also been quoted in Barron's, Harvard Magazine, Financial Planning Magazine, Forbes, New York Times, and USA Today; and he has appeared on CNN, CNBC, PBS, and Bloomberg Television.  Dr. Geist has also been a special guest on Louis Rukeyser's Wall Street Week.  Click Here to go to the archive of columns.
  • Testimonial Section- Read comments from our long term members.
However, the major theme of our newsletter will continue to be ideas in small and microcap stocks which we believe have the potential to provide outstanding returns for investors with a one to two year investment horizon.
This category of stocks is very risky, and you should never invest more money than you can afford to lose.  In addition, you should make an effort to verify through third party sources any claims that we make about the companies that we represent.

The OTC Journal is a proud partner of the SwingWire.com Online Investment Community. A next generation Online Analyst Exchange providing Members the ability to search, review, track and monitor some of the Internet's best Online CAs (CyberAnalysts). Members have the opportunity to potentially achieve higher returns by viewing top performing portfolios and receiving real-time alerts from favorite CAs. 

SwingWire.com also has a lucrative incentive model for experienced investors and traders who consistently outperform the market. Share market ideas with other like-minded investors, establish a proven track record, provide insightful commentary, attract followers and ultimately become one of the Internet's highest paid and most sought after CyberAnalysts! 

Click here to receive your FREE 30-Day Trial Membership with no further obligation. Sign Up Today! 
 
Disclaimer
The OTCjournal.com Newsletter is an independent electronic publication committed to providing our readers with factual information on selected  publicly traded companies. All companies are chosen on the basis of certain financial analysis and other pertinent criteria with a view toward  maximizing the upside potential for investors while minimizing the downside risk, whenever possible.  Moreover, as detailed below, this publication accepts compensation from certain of the companies which it features.  Likewise, this newsletter is owned by MarketByte, LLC.  To the degrees enumerated herein,  this newsletter should not be regarded as an independent publication.

Click Here to view our compensation on every company we have ever covered, or visit the following web address:  http://www.otcjournal.com/disclaimer.html for our full profiles and http://www.otcjournal.com/trading-alerts/disclaimer.html for Trading Alerts.

All statements and expressions are the sole  opinions of the editors and are subject to change without notice. A profile, description, or other mention of a company in the newsletter is neither an offer nor solicitation to buy or sell any securities  mentioned. While we believe all sources of information to be factual and reliable, in no way do we represent or guarantee the accuracy thereof, nor the statements made herein.

The editor, members of the editor's family, and/or entities with  which they are affiliated, are forbidden by company policy to own, buy, sell or otherwise trade stock for their own benefit in the companies who appear in the publication. unless specifically disclosed in the newsletter.

The profiles, critiques, and other editorial content of the OTCjournal.com may contain forward-looking statements relating to the expected capabilities of the companies mentioned herein.

THE READER SHOULD VERIFY ALL CLAIMS AND DO THEIR OWN DUE DILIGENCE BEFORE INVESTING IN ANY SECURITIES MENTIONED. INVESTING IN  SECURITIES IS SPECULATIVE AND CARRIES A HIGH DEGREE OF RISK. THE INFORMATION FOUND IN THIS PROFILE IS PROTECTED BY THE COPYRIGHT LAWS OF THE UNITED STATES AND MAY NOT BE COPIED, OR REPRODUCED IN ANY WAY WITHOUT THE EXPRESSED, WRITTEN  CONSENT OF THE EDITORS OF OTCjournal.com.

We encourage our readers to invest carefully and read the investor information available at the web sites of  the Securities and Exchange Commission ("SEC") at http://www.sec.govand/or the National Association of Securities Dealers ("NASD") at http://www.nasd.com. We also strongly recommend that you read the SEC advisory to investors concerning Internet Stock Fraud, which can be found at  http://www.sec.gov/consumer/cyberfr.htm. Readers can review all public filings by companies at the SEC's EDGAR page. The NASD has published information on how to invest carefully at its web site.

You can unsubscribe from this list at any time by Clicking Here and HITTING SEND. If you are having difficulty removing yourself or wish to change your address please go to http://listserv.otcjournal.com/opt.cgi?email=krbdev@mit.edu&list=otcjournal-new.

  ---
You are currently subscribed to otcjournal-new as: krbdev@mit.edu
To unsubscribe send a blank email to leave-otcjournal-new-3719211X@lyris.otcjournal.com --------------4C9006809691A039D8AD8595-- From lyris-admin@lyris.otcjournal.com Tue Jan 29 16:32:23 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA06606 for ; Tue, 29 Jan 2002 16:32:23 -0500 (EST) Received: from lyris.otcjournal.com (lyris.otcjournal.com [216.105.36.68]) by fort-point-station.mit.edu (8.9.2/8.9.2) with SMTP id QAA22158 for ; Tue, 29 Jan 2002 16:32:22 -0500 (EST) Message-Id: X-lyris-type: unsubscribed From: "Lyris ListManager" Reply-To: "Lyris ListManager" To: krbdev@mit.edu Subject: Re: your unsubscribe request Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Tue Jan 29 16:33:00 2002 X-Original-Date: Tue, 29 Jan 2002 14:04:10 -0800 As you requested, you have been unsubscribed from 'otcjournal-new'. --- Return-Path: Received: from listserv.otcjournal.com ([209.75.61.200]) by lyris.otcjournal.com with SMTP (Lyris ListManager SOLARIS/INTEL version 4.1.2); Tue, 29 Jan 2002 13:19:09 -0800 Received: (from nobody@localhost) by listserv.otcjournal.com (8.9.3/8.9.3) id MAA02032 for otcjournal-new-request@lyris.otcjournal.com; Tue, 29 Jan 2002 12:44:51 -0800 Date: Tue, 29 Jan 2002 12:44:51 -0800 From: krbdev@mit.edu Message-Id: <200201292044.MAA02032@listserv.otcjournal.com> X-Authentication-Warning: listserv.otcjournal.com: nobody set sender to krbdev@mit.edu using -f To: otcjournal-new-request@lyris.otcjournal.com Subject: unsubscribe otcjournal-new From akosut@Stanford.EDU Wed Jan 30 02:41:34 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id CAA14044 for ; Wed, 30 Jan 2002 02:41:33 -0500 (EST) Received: from epic3.Stanford.EDU (epic3.Stanford.EDU [171.64.15.36]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id CAA10627 for ; Wed, 30 Jan 2002 02:41:29 -0500 (EST) Received: (from akosut@localhost) by epic3.Stanford.EDU (8.11.6/8.11.6) id g0U7fTH12464 for krbdev@mit.edu; Tue, 29 Jan 2002 23:41:29 -0800 (PST) From: Alexei Kosut To: krbdev@mit.edu Subject: KfM 4.0b7: a few questions Message-ID: <20020129234128.A12371@stanford.edu> Mail-Followup-To: krbdev@mit.edu Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 30 02:42:00 2002 X-Original-Date: Tue, 29 Jan 2002 23:41:28 -0800 A collection of comments on KfM 4.0b7: 1. The 4.0b7 installer not appear install the header files in /usr/include on Mac OS X. The libraries are in /usr/lib, but I can't find the header files. Everything in the Kerberos framework seems fine, though. It could be just my Mac, though, I guess. 2. The CFM version number of UtilitiesLib seems to have changed again in 4.0b7. I remember this occurring earlier in the 3.5/4.0 release cycle as well. I currently build my CFM binaries against the KfM 3.5 SDK, which worked up until 4.0b6 (although, ironically, it doesn't seem to work for 3.5 itself). I'd like to be able to call unix_time_to_mac_time() and gettimeofday(). I could roll my own, I guess, but I want to be sure I'm using the same time information as KfM. Would it be safer to just use GetSharedLibrary()/FindSymbol() instead of linking to the UtilitiesLib stub library? 3. KfM will automatically invoke the login dialog when certain of the Kerberos4Lib functions are called. I have an application that I absolutely do not want to invoke a login dialog, but I want it to use credentials if they already exist. I can call KLCacheHasValidTickets() first, but on OS X at least, I've been able to log out between that call and the next Kerberos call. Is there some way, on either a per-application or per-call basis, to disable the automatic login dialog? Related comments: a) Why is krb_get_cred() one of the functions that makes the login dialog appear? This seems odd, since this function isn't supposed to actually get new credentials from the TGS. Unless you're requesting the tgt, initating a login dialog won't help. b) get_ad_tkt() doesn't pop up the login dialog, but I happened to notice that it will cause a crash if there are no credentials available. 4. We've gotten a couple complaints here about the login window: If the user clicks on another window while the login server is opening, they may never see the login dialog, since it ends up behind the other app. Going back to their original application doesn't help, and it appears to have hung, since it's waiting for the login dialog to close. Sometimes they eventually find the Kerberos Login Server icon in the dock. Would it be possible to make the login dialog always appear in front of other windows? This would solve this problem nicely. I note that Mac OS X does this for keychain access dialogs, which serve a similar purpose. I know that a Cocoa window can be set to a level of NSStatusWindowLevel to do this; I don't know the equivalent Carbon call, though I imagine there is one. This would probably also reduce the problem I've seen from time to time where the login dialog appears under such a globally-topmost window, making it so you can't easily bring the login dialog forward. Other than that, though, 4.0b7 is running smoothly. I am very pleased. Thanks! -- Alexei Kosut From kqchoi@MIT.EDU Wed Jan 30 10:56:39 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id KAA20079 for ; Wed, 30 Jan 2002 10:56:39 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.7.72]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA18839 for ; Wed, 30 Jan 2002 10:56:39 -0500 (EST) Received: from manawatu-mail-centre.mit.edu (MANAWATU-MAIL-CENTRE.MIT.EDU [18.7.7.71]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id KAA09348 for ; Wed, 30 Jan 2002 10:56:39 -0500 (EST) Received: from [18.248.2.167] (FORRESTER.MIT.EDU [18.248.2.167]) by manawatu-mail-centre.mit.edu (8.9.2/8.9.2) with ESMTP id KAA19209 for ; Wed, 30 Jan 2002 10:55:49 -0500 (EST) Mime-Version: 1.0 Message-Id: To: krbdev@MIT.EDU From: Kevin Choi Subject: Printing on Mac OS X to Athena Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 30 10:57:00 2002 X-Original-Date: Wed, 30 Jan 2002 10:55:50 -0500 Hi, I just installed Mac OS X 10.1 on my computer in my dorm room (East Campus West). I am also running MS Office v.X. How do I print to an athena printer, especially to "helios" in Building 56? (I don't think there's a KLPR client for OS X but is there a workaround?) Thanks, Kevin Choi From smcguire@MIT.EDU Wed Jan 30 11:28:26 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id LAA20486 for ; Wed, 30 Jan 2002 11:28:26 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.7.72]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id LAA03826; Wed, 30 Jan 2002 11:28:25 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id LAA17795; Wed, 30 Jan 2002 11:28:25 -0500 (EST) Received: from [18.18.1.160] (NOME-KING.MIT.EDU [18.18.1.160]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id LAA22843; Wed, 30 Jan 2002 11:28:24 -0500 (EST) Mime-Version: 1.0 Message-Id: In-Reply-To: <20020129234128.A12371@stanford.edu> References: <20020129234128.A12371@stanford.edu> To: Alexei Kosut , krbdev@MIT.EDU From: Scott McGuire Subject: Re: KfM 4.0b7: a few questions Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 30 11:29:01 2002 X-Original-Date: Wed, 30 Jan 2002 11:27:29 -0500 At 11:41 PM -0800 1/29/02, Alexei Kosut wrote: >A collection of comments on KfM 4.0b7: > >1. The 4.0b7 installer not appear install the header files in > /usr/include on Mac OS X. The libraries are in /usr/lib, but I > can't find the header files. Everything in the Kerberos framework > seems fine, though. It could be just my Mac, though, I guess. Yes, this appears to be a bug in the 4.0b7 installer, sorry. Thanks for bringing it to our attention. It will be fixed in the next release. Other folks are looking into your other questions. -- Scott McGuire / smcguire@mit.edu MIT Information Systems Macintosh Developer From lxs@MIT.EDU Wed Jan 30 14:49:04 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id OAA22972 for ; Wed, 30 Jan 2002 14:49:04 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id OAA25696; Wed, 30 Jan 2002 14:49:03 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id OAA19504; Wed, 30 Jan 2002 14:49:02 -0500 (EST) Received: from [18.101.1.25] (WEST-NINETYTWO-THREE-SIXTY-SIX.MIT.EDU [18.18.6.111]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id OAA15313; Wed, 30 Jan 2002 14:49:02 -0500 (EST) Mime-Version: 1.0 X-Sender: lxs@po12.mit.edu (Unverified) Message-Id: In-Reply-To: <20020129234128.A12371@stanford.edu> References: <20020129234128.A12371@stanford.edu> To: Alexei Kosut From: Alexandra Ellwood Subject: Re: KfM 4.0b7: a few questions Cc: krbdev@MIT.EDU Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 30 14:50:00 2002 X-Original-Date: Wed, 30 Jan 2002 14:49:00 -0500 >4. We've gotten a couple complaints here about the login window: If > the user clicks on another window while the login server is > opening, they may never see the login dialog, since it ends up > behind the other app. Going back to their original application > doesn't help, and it appears to have hung, since it's waiting for > the login dialog to close. Sometimes they eventually find the > Kerberos Login Server icon in the dock. > > Would it be possible to make the login dialog always appear in > front of other windows? This would solve this problem nicely. I > note that Mac OS X does this for keychain access dialogs, which > serve a similar purpose. I know that a Cocoa window can be set to > a level of NSStatusWindowLevel to do this; I don't know the > equivalent Carbon call, though I imagine there is one. I have written code to place the login window and sub-windows in the utility group layer, which causes them to "float" with the other system utility windows. Pending UI evaluation, this will probably appear in the next release. Hope this helps, --lxs -- ----------------------------------------------------------------------------- Alexandra Ellwood MIT Information Systems http://mit.edu/lxs/www/ ----------------------------------------------------------------------------- -- From smcguire@MIT.EDU Wed Jan 30 15:12:53 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id PAA23279 for ; Wed, 30 Jan 2002 15:12:53 -0500 (EST) Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.7.72]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id PAA05770; Wed, 30 Jan 2002 15:12:52 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by central-city-carrier-station.mit.edu (8.9.2/8.9.2) with ESMTP id PAA05306; Wed, 30 Jan 2002 15:12:51 -0500 (EST) Received: from [18.18.1.160] (NOME-KING.MIT.EDU [18.18.1.160]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id PAA25791; Wed, 30 Jan 2002 15:12:51 -0500 (EST) Mime-Version: 1.0 Message-Id: In-Reply-To: References: To: Kevin Choi , krbdev@MIT.EDU From: Scott McGuire Subject: Re: Printing on Mac OS X to Athena Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 30 15:13:01 2002 X-Original-Date: Wed, 30 Jan 2002 15:10:39 -0500 At 10:55 AM -0500 1/30/02, Kevin Choi wrote: >Hi, I just installed Mac OS X 10.1 on my computer in my dorm room >(East Campus West). I am also running MS Office v.X. How do I print >to an athena printer, especially to "helios" in Building 56? (I >don't think there's a KLPR client for OS X but is there a >workaround?) No, currently there is no KLPR client for Mac OS X nor are we aware of a workaround to print to authenticated printers (which "helios" is). You can print to non-authenticated printers under Mac OS X using the built in lpr on Mac OS X, however. Please note that Mac OS X is not officially supported by MIT Information Systems. For more information, see: -- Scott McGuire / smcguire@mit.edu MIT Information Systems Macintosh Developer From meeroh@MIT.EDU Wed Jan 30 16:46:49 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id QAA24474 for ; Wed, 30 Jan 2002 16:46:49 -0500 (EST) Received: from grand-central-station.mit.edu (GRAND-CENTRAL-STATION.MIT.EDU [18.7.21.82]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA13248; Wed, 30 Jan 2002 16:45:50 -0500 (EST) Received: from melbourne-city-street.mit.edu (MELBOURNE-CITY-STREET.MIT.EDU [18.7.21.86]) by grand-central-station.mit.edu (8.9.2/8.9.2) with ESMTP id QAA14533; Wed, 30 Jan 2002 16:44:11 -0500 (EST) Received: from [18.18.1.86] (DONT-GRIEVE-ADMIRAL.MIT.EDU [18.18.1.86]) by melbourne-city-street.mit.edu (8.9.2/8.9.2) with ESMTP id QAA05762; Wed, 30 Jan 2002 16:43:47 -0500 (EST) Mime-Version: 1.0 X-Sender: meeroh@po12 (Unverified) Message-Id: In-Reply-To: <20020129234128.A12371@stanford.edu> References: <20020129234128.A12371@stanford.edu> To: Alexei Kosut , krbdev@MIT.EDU From: Miro Jurisic Subject: Re: KfM 4.0b7: a few questions Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: krbdev-admin@mit.edu Errors-To: krbdev-admin@mit.edu X-BeenThere: krbdev@mit.edu X-Mailman-Version: 2.0 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Kerberos Developers Mailing List List-Unsubscribe: , List-Archive: Date: Wed Jan 30 16:47:00 2002 X-Original-Date: Wed, 30 Jan 2002 16:43:44 -0500 >2. The CFM version number of UtilitiesLib seems to have changed again > in 4.0b7. I remember this occurring earlier in the 3.5/4.0 release > cycle as well. I currently build my CFM binaries against the KfM > 3.5 SDK, which worked up until 4.0b6 (although, ironically, it > doesn't seem to work for 3.5 itself). I'll answer the rest of this later, but I would like to know what you mean by that parenthetical remark. meeroh -- | MIT I/S Mac developer | KB1FMP "Well, I must endure the presence of two or three caterpillars if I wish to become acquainted with the butterflies." -- Antoine de Saint-Exupery, "The Little Prince" From akosut@Stanford.EDU Wed Jan 30 17:39:47 2002 Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76]) by pch.mit.edu (8.9.3+Sun/8.9.3) with ESMTP id RAA25143 for ; Wed, 30 Jan 2002 17:39:46 -0500 (EST) Received: from saga14.Stanford.EDU (saga14.Stanford.EDU [171.64.15.144]) by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id RAA04350; Wed, 30 Jan 2002 17:39:46 -0500 (EST) Received: (from akosut@localhost) by saga14.Stanford.EDU (8.11.6/8.11.6) id g0UMdjV02693; Wed, 30 Jan 2002 14:39:45 -0800 (PST) From: Alexei Kosut To: Miro Jurisic Cc: krbdev@MIT.EDU Subject: Re: KfM 4.0b7: a few questions Message-ID: <20020130143945.A2584@stanford.edu> Mail-Followup-To: Miro Jurisic , krbdev@MIT.EDU References: <20020129234128.A12371@stanford.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=u