> I'm not really familiar with the idea of snapshots... what files are 
> contained in a snapshot?  how do you get it?  how do you install it?  
> When I installed macBSD (early May) I used the tarballs...

The whole tree. Snapshots are also available as tarballs. They live
at: ftp://ftp.netbsd.org/pub/NetBSD/arch/mac68k/current-970601/snapshot

Note: those files are .tgz files, even though they aren't marked.

Just install them instead of 1.2.1 (which is old technology).

> >Get the secr package. It includes kerberosIV. I use it with the servers
> >here at Stanford routinely.
> >
> >As you're at CMU, will you be needing the andrew_string2key routine?
> >At the moment, choosing it requires recompiling kinit (actually
> >just re-linking it to include libafs before libdes; -DAFS during
> >the make will do this).
> 
> I don't plan on mounting AFS(yet), just kerberos so I can have encrypted 
> telnet and ftp and also authenticated zephyr (which I will also need to 
> install).  It would be nice if I could mount AFS, but it isn't too 
> important to me.

The thing though is that if your realm supports AFS-style kerberos
passwords, even if you don't use AFS, you MUST use the AFS string2key
routine, or else your password will never work.

If you set up your own realm, it's no big deal. Go with the default MIT
string2key. But since AFS was developped at CMU (it's the ANDREW file
system, after all), I bet the kerberos realm uses the AFS string2key
stuff.

Note: kinit is the only client-side program that needs changing
as far as I can tell.

The in-tree telnet works fine w/ kerberos. I got Stanford's kftgt to
work w/o problem. kerberized ftp'd be nice. I've not tried zephyr,
and I'd like to hear how it goes.

Take care,

Bill

P.S. There are NetBSD AFS lkm's on the transarc site. You can probably
get your transarc site contact to download them. They work great.