packages: heimdal/heimdal-krb5.conf - more defaults

baggins baggins at pld-linux.org
Wed Jul 8 13:07:46 CEST 2009 

Author: baggins                      Date: Wed Jul  8 11:07:46 2009 GMT
Module: packages                      Tag: HEAD
---- Log message:
- more defaults

---- Files affected:
packages/heimdal:
   heimdal-krb5.conf (1.2 -> 1.3) 

---- Diffs:

================================================================
Index: packages/heimdal/heimdal-krb5.conf
diff -u packages/heimdal/heimdal-krb5.conf:1.2 packages/heimdal/heimdal-krb5.conf:1.3
--- packages/heimdal/heimdal-krb5.conf:1.2	Wed Jul  8 12:42:03 2009
+++ packages/heimdal/heimdal-krb5.conf	Wed Jul  8 13:07:41 2009
@@ -1,31 +1,52 @@
 [libdefaults]
+	ticket_lifetime = 24h
+	renew_lifetime = 24h
         default_realm = MY.REALM
+#	default_keytab_name = FILE:/etc/krb5.keytab
+#	default_etypes = des3-hmac-sha1 des-cbc-crc des-cbc-md5 des-cbc-md4 arcfour-hmac-md5
+#	default_etypes_des = des3-hmac-sha1 des-cbc-crc des-cbc-md5 des-cbc-md4 arcfour-hmac-md5
+#	default_tkt_enctypes= des3-hmac-sha1 des-cbc-crc des-cbc-md5 des-cbc-md4 arcfour-hmac-md5
+#	default_tgs_enctypes= des3-hmac-sha1 des-cbc-crc des-cbc-md5 des-cbc-md4 arcfour-hmac-md5
+	kdc_timesync = 1
 	clockskew = 300
-	v4_instance_resolve = false
-	v4_name_convert = {
-		host = {
-			rcmd = host
-			ftp = ftp
-		}
-		plain = {
-			something = something-else
-		}
+	forwardable = true
+	proxiable = true
+#	dns_lookup_kdc = true
+#	dns_lookup_realm = true
+
+[appdefaults]
+	ticket_lifetime = 24h
+	renew_lifetime = 24h
+	pam = {
+		ticket_lifetime = 24h
+		renew_lifetime = 24h
+		forwardable = true
+		proxiable = true
 	}
-	
+
 [realms]
 	MY.REALM = {
-		kdc = MY.COMPUTER
-	}
-	OTHER.REALM = {
-		v4_instance_convert = {
-			kerberos = kerberos
-			computer = computer.some.other.domain
-		}
+		kdc = computer.my.domain
+		admin_server = computer.my.domain
+		default_domain = my.domain
+
 	}
+
 [domain_realm]
 	.my.domain = MY.REALM
+	my.domain = MY.REALM
 
 [logging]
 	kdc = SYSLOG
 	admin_server = SYSLOG
 	default = SYSLOG
+
+[kdc]
+	enable-kerberos4 = false
+	kdc_warn_pwexpire = 14
+#	database = {
+#		realm = MY.REALM
+#		dbname = ldap:dc=my,dc=domain
+#		acl_file = /var/lib/heimdal/kadmind.acl
+#	}
+#	hdb-ldap-create-base = ou=Kerberos,dc=my,dc=domain
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/packages/heimdal/heimdal-krb5.conf?r1=1.2&r2=1.3&f=u

More information about the pld-cvs-commit mailing list