From: Andreas (no email)
Date: Wed Apr 14 2004 - 13:58:55 EDT
On Wed, Apr 14, 2004 at 12:28:05PM -0400, Rob Siemborski wrote:
> > Rob, are you using Heimdal?
>
> Yes, we are. But I think the AES issue is more telling. Does the current
> CVS version of plugins/gssapi.c fix the issue for you?
No, still the same problem:
[andreas at pandora plugins]$ cyradm --auth gssapi pandora.distro.conectiva
pandora.distro.conectiva> lm
pandora.distro.conectiva>
/var/log/messages:
Apr 14 14:48:22 pandora imap[9829]: login: pandora.distro.conectiva [10.0.17.30] andreas GSSAPI User logged in
Apr 14 14:48:23 pandora perl: encoded packet size too big (4163 > 4096)
The patch I applied:
--- src/sasl/plugins/gssapi.c 2004/02/06 17:23:51 1.84
+++ src/sasl/plugins/gssapi.c 2004/04/12 16:36:21 1.85
@@ -1419,7 +1419,7 @@
if(oparams->mech_ssf) {
/* xxx probably too large */
- oparams->maxoutbuf -= 50;
+ oparams->maxoutbuf -= 256;
}
gss_release_buffer(&min_stat, output_token);
--- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
|
|
|