https://k5wiki.kerberos.org/wiki?title=Release_Meeting_Minutes/2012-02-28&feed=atom&action=historyRelease Meeting Minutes/2012-02-28 - Revision history2024-03-28T22:09:56ZRevision history for this page on the wikiMediaWiki 1.27.4https://k5wiki.kerberos.org/wiki?title=Release_Meeting_Minutes/2012-02-28&diff=4562&oldid=prevTomYu: New page: {{minutes|2012}} Will Fiveash, Carlos Garay, Greg Hudson, Simo Sorce, Zhanna Tsitkova, Tom Yu == Git etc == Will is having git-svn issues. ;Greg: Just do a fork on GitHub instead. ;Wil...2012-03-12T21:53:48Z<p>New page: {{minutes|2012}} Will Fiveash, Carlos Garay, Greg Hudson, Simo Sorce, Zhanna Tsitkova, Tom Yu == Git etc == Will is having git-svn issues. ;Greg: Just do a fork on GitHub instead. ;Wil...</p>
<p><b>New page</b></p><div>{{minutes|2012}}<br />
Will Fiveash, Carlos Garay, Greg Hudson, Simo Sorce, Zhanna Tsitkova, Tom Yu<br />
<br />
== Git etc ==<br />
<br />
Will is having git-svn issues.<br />
<br />
;Greg: Just do a fork on GitHub instead.<br />
;Will: Changes for simplifying mkey list in Solaris. libumem testnig. No aliasing of mkey lists.<br />
<br />
<br />
== 1.11 ==<br />
<br />
;Simo: Import/export cred. Might be better to have generic (not krb5-specific) import cred.<br />
;Greg: gss_set_cred_opt ... can actually create creds.<br />
;Simo: No abstract way to ... need to know OID, implementation URIs? Would like to distinguish between keytab, ccache.<br />
;Greg: Maybe gss_import_cred. "cred" type to import_name. Either a buffer or a URI.<br />
<br />
== Moving ccache location ==<br />
<br />
;Greg: Agreement?<br />
;Simo: Moving out of /tmp. Using private tmp directory per user.<br />
;Greg: DIR ccaches?<br />
;Simo: Shouldn't be a problem.<br />
;Greg: Has to pre-exist.<br />
;Simo: Might pre-create or ask user to.<br />
;Greg: Login process would make.<br />
;Simo: would possibly not.<br />
;Greg: Bind mount?<br />
;Simo: To keep /tmp directory separate.<br />
;Greg: How would gssd find it?<br />
;Simo: Each process would see a different /tmp from any other (process / session / user). Would be tmpfs to avoid credential theft from disk.</div>TomYu