IOERRORS -- the saga continues

Ken Murchison murch at
Tue Feb 7 20:12:13 EST 2006

Perry Smith wrote:
> Ken,
> I am not sure I answered your question before.
> I went back and used Mac's tcpdump utility to look at the data coming  
> over the wire.  It is *not* clear text.  So, I am assuming it is  using 
> Kerberos to encrypt the data.  If I still have not answered  your 
> question, I can either dig further into the code and/or ask some  Mac 
> guys on the net -- but I've not found Mac guys that really know  the 
> details like this.
> Looking at prot_fill in prot.c, s->saslssf is true when the client is  
> authenticating using Kerberos and false when the client is using  
> "password" (which I assume is clear text password authentication).

Right, I assumed that the problem is in the security layer code.  So 
you're using GSSAPI, not KERBEROS_V4, correct?

Kenneth Murchison
Project Cyrus Developer/Maintainer
Carnegie Mellon University

More information about the Info-cyrus mailing list