After manually changing the gssapi header used in=20 /usr/src/include/rpc/rpcsec_gss.h to somewhat klunky "#include=20 "/usr/src/crypto/heimdal/lib/gssapi/gssapi/gssapi.h"" system csupped=20 yesterday built okay and after rebuilding cyrus-sasl, saslauthd and=20 cyrus I get the following failures in log: Jul 18 16:37:35 moria perl: GSSAPI Error: Miscellaneous failure (see=20 text)^B (open(/tmp/krb5cc_0): No such file or directory) -This is expected behaviour as Kerberos was not running at the moment,=20 but with Benjamin's patch Kerberos/GSSAPI spat out a meaningful error=20 message After dusting off my old Kerberos setup, doing basic kinit and running=20 cyradm localhost I got: Jul 18 16:39:00 moria perl: GSSAPI Error: Miscellaneous failure (see=20 text) (Server (imap/localhost@XXX.DOMAIN.COM) unknown) -Again expected as there is no imap trust relationship defined. So at least after cursory testing it looks like that with Benjamin's=20 patch there is a working GSSAPI/Kerberos backend available, instead of=20 something that chokes on passed parameters that are ok for every other=20 tested gssapi implementation. Of course, more thorough testing in proper kerberised/LDAP environment=20 needs to be done, which is something I haven't got time at the moment. -Reko=20 _______________________________________________ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"