Subject: Re: firefox and GSSAPI
To: None <pkgsrc-users@netbsd.org>
From: Jukka Salmi <j+nbsd@2006.salmi.ch>
List: pkgsrc-users
Date: 03/18/2006 00:10:09
Jukka Salmi --> tech-pkg (2004-11-05 16:45:27 +0100):
> This seems to work fine with firefox-gtk2-0.10.1 and mozilla-1.7.3nb1
> most of the time, but somtimes both of them dump core. I noticed this
> happens when accessing a .htaccess (AuthType Kerberos) protected page
> using https.
> I'm using mod_auth_kerb[1] 5.0-rc6 (built "manually") on apache-1.3.33
> with ap-ssl-2.8.21nb1 built from current pkgsrc. So far I've never
> seen a core dump when accessing http sites.
[...]
> [1] http://modauthkerb.sourceforge.net/
FYI:
running a recent firefox on a -current NetBSD system wich has [1]these
changes should make you able to use negotiate authentication out of
the box. All you need to do is to set
`network.negotiate-auth.trusted-uris' to contain a (comma delimited)
list of domains negotiate auth should be allowed with.
I'm using firefox-1.5.0.1nb1 on -current (3.99.17) NetBSD/i386, and
mod_auth_kerb-5.0rc7 (with a tiny [2]patch applied) with
apache-1.3.34nb6 on NetBSD/i386 2.1_STABLE. Negotiate authentication
works fine; I've not seen the coredumps described above anymore.
Cheers, Jukka
[1] http://mail-index.netbsd.org/source-changes/2006/03/17/0104.html
[2] http://salmi.ch/~jukka/patches/mod_auth_kerb/makefile.patch
--
bashian roulette:
$ ((RANDOM%6)) || rm -rf ~