From e8eb87ccd604102f329a6bcc6070fa2e7be93c71 Mon Sep 17 00:00:00 2001
From: Larry Lawrence <larry@linuxfromscratch.org>
Date: Thu, 10 Feb 2005 20:19:10 +0000
Subject: [PATCH] expanded MIT krb5 descriptions

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@3428 af4574ff-66df-0310-9fd7-8a98e5e911e0
---
 introduction/welcome/changelog.xml |   2 +
 postlfs/security/linux_pam.xml     |   9 +-
 postlfs/security/mitkrb.xml        | 182 +++++++++++++++++++++++++----
 3 files changed, 166 insertions(+), 27 deletions(-)

diff --git a/introduction/welcome/changelog.xml b/introduction/welcome/changelog.xml
index 17e24b5ddf..44260678d6 100644
--- a/introduction/welcome/changelog.xml
+++ b/introduction/welcome/changelog.xml
@@ -21,6 +21,8 @@ who wrote what.</para>
 <para>&version; &ndash; &releasedate;</para>
 
 <itemizedlist>
+<listitem><para>February 10th, 2005 [larry]: Added more descriptions to
+MIT Kerberos and added db to PAM's dependancies.</para></listitem>
 
 <listitem><para>February 10th, 2005 [randy]: Updated to WvStreams-4.0.1; 
 Fixed broken download URLs in RP-PPPoE instructions</para></listitem>
diff --git a/postlfs/security/linux_pam.xml b/postlfs/security/linux_pam.xml
index 3e71cf53f3..1a830d047c 100644
--- a/postlfs/security/linux_pam.xml
+++ b/postlfs/security/linux_pam.xml
@@ -59,6 +59,7 @@ dependencies</title>
 <sect4><title>Optional</title>
 <para><ulink 
 url="http://sourceforge.net/projects/sgmltools-lite/">sgmltools-lite</ulink>
+and <xref linkend="db"/> (for pam_userdb module)
 </para></sect4>
 </sect3>
 
@@ -175,7 +176,7 @@ package.</para></note>
 <segtitle>Installed Directories</segtitle>
 <seglistitem>
 <seg>unix_chkpwd and pam_tally</seg>
-<seg>libpam.so, libpamc.so and libpam_misc.so</seg>
+<seg>libpam.[so,a], libpamc.[so,a] and libpam_misc.[so,a]</seg>
 <seg>/etc/pam.d and /lib/security</seg>
 </seglistitem>
 </segmentedlist>
@@ -194,11 +195,11 @@ in read protected databases.</para>
 </varlistentry>
 
 <varlistentry id="libpam">
-<term><filename class='libraryfile'>libpam.so</filename></term>
-<listitem><para> provide the interfaces between applications and the 
+<term><filename class='libraryfile'>libpam.[so,a]</filename></term>
+<listitem><para>provide the interfaces between applications and the 
 <acronym>PAM</acronym> modules.</para>
 <indexterm zone="Linux_PAM libpam">
-<primary sortas="c-libpam">libpam.so</primary></indexterm>
+<primary sortas="c-libpam">libpam.[so,a]</primary></indexterm>
 </listitem>
 </varlistentry>
 </variablelist>
diff --git a/postlfs/security/mitkrb.xml b/postlfs/security/mitkrb.xml
index eaffb4ce3c..8b956e9fe8 100644
--- a/postlfs/security/mitkrb.xml
+++ b/postlfs/security/mitkrb.xml
@@ -96,7 +96,7 @@ following commands:
 <screen><userinput><command>cd src &amp;&amp;
 ./configure --prefix=/usr --sysconfdir=/etc \
     --localstatedir=/var/lib --enable-dns \
-    --enable-shared --mandir=/usr/share/man &amp;&amp;
+    --enable-static --mandir=/usr/share/man &amp;&amp;
 make</command></userinput></screen>
 
 <para>
@@ -130,6 +130,11 @@ ldconfig</command></userinput></screen>
 be resolved using the <acronym>DNS</acronym> server.
 </para>
 
+<para>
+<parameter>--enable-static</parameter>: This switch builds static
+libraries in addition to the shared libraries.
+</para>
+
 <para>
 <screen><command>mv /bin/login /bin/login.shadow
 cp /usr/sbin/login.krb5 /bin/login
@@ -388,7 +393,7 @@ for krb-&mitkrb-version;</ulink> on which the above instructions are based.
 kadmin.local, kadmind, kadmind4, kdb5_util, kdestroy, kinit, klist,
 klogind, kpasswd, kprop, kpropd, krb5-send-pr, krb5-config, krb524d,
 krb524init, krb5kdc, kshd, ksu, ktutil, kvno, login.krb5, rcp, rlogin,
-rsh, rshd, rxtelnet, rxterm, sclient, sim_client, sim_server, sserver,
+rsh, sclient, sim_client, sim_server, sserver,
 telnet, telnetd, uuclient, uuserver, v5passwd, v5passwdd</seg>
 <seg>libcom_err.[so,a], libdes425.[so,a], libgssapi.[so,a], libgssrpc.[so,a],
 libkadm5clnt.[so,a], libkadm5srv.[so,a], libkdb5.[so,a], libkrb5.[so,a], 
@@ -410,6 +415,22 @@ error-code names into a <application>C</application> source file..</para>
 </indexterm></listitem>
 </varlistentry>
 
+<varlistentry id="ftp-mitkrb">
+<term><command>ftp</command></term>
+<listitem><para>is a kerberized <acronym>FTP</acronym> client.</para>
+<indexterm zone="mitkrb ftp">
+<primary sortas="b-ftp">ftp</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="ftpd-mitkrb">
+<term><command>ftpd</command></term>
+<listitem><para>is a kerberized <acronym>FTP</acronym> daemon.</para>
+<indexterm zone="mitkrb ftpd">
+<primary sortas="b-ftpd">ftpd</primary>
+</indexterm></listitem>
+</varlistentry>
+
 <varlistentry id="k5srvutil">
 <term><command>k5srvutil</command></term>
 <listitem><para>is a host keytable manipulation utility.</para>
@@ -436,21 +457,11 @@ to a Kerberos database.</para>
 </indexterm></listitem>
 </varlistentry>
 
-<varlistentry id="kinit-mitkrb">
-<term><command>kinit</command></term>
-<listitem><para>is used to authenticate to the Kerberos server as
-a principal and acquire a ticket granting ticket that can later be used
-to obtain tickets for other services.</para>
-<indexterm zone="mitkrb kinit-mitkrb">
-<primary sortas="b-kinit">kinit</primary>
-</indexterm></listitem>
-</varlistentry>
-
-<varlistentry id="krb5kdc">
-<term><command>krb5kdc</command></term>
-<listitem><para>is a Kerberos 5 server.</para>
-<indexterm zone="mitkrb krb5kdc">
-<primary sortas="b-krb5kdc">krb5kdc</primary>
+<varlistentry id="kdb5_util">
+<term><command>kdb5_util</command></term>
+<listitem><para>is the <acronym>KDC</acronym> database utility.</para>
+<indexterm zone="mitkrb kdb5_util">
+<primary sortas="b-kdb5_util">kdb5_util</primary>
 </indexterm></listitem>
 </varlistentry>
 
@@ -462,11 +473,13 @@ to obtain tickets for other services.</para>
 </indexterm></listitem>
 </varlistentry>
 
-<varlistentry id="kdb5util">
-<term><command>kdb5util</command></term>
-<listitem><para>is the <acronym>KDC</acronym> database utility.</para>
-<indexterm zone="mitkrb kdb5util">
-<primary sortas="b-kdb5util">kdb5util</primary>
+<varlistentry id="kinit-mitkrb">
+<term><command>kinit</command></term>
+<listitem><para>is used to authenticate to the Kerberos server as
+a principal and acquire a ticket granting ticket that can later be used
+to obtain tickets for other services.</para>
+<indexterm zone="mitkrb kinit-mitkrb">
+<primary sortas="b-kinit">kinit</primary>
 </indexterm></listitem>
 </varlistentry>
 
@@ -519,11 +532,28 @@ records.</para>
 <term><command>krb5-config</command></term>
 <listitem><para>gives information on how to link
 programs against libraries.</para>
-<indexterm zone="mitkrb krb5-config-1">
+<indexterm zone="mitkrb krb5-config-prog">
 <primary sortas="b-krb5-config-1">krb5-config</primary>
 </indexterm></listitem>
 </varlistentry>
 
+<varlistentry id="krb5kdc">
+<term><command>krb5kdc</command></term>
+<listitem><para>is a Kerberos 5 server.</para>
+<indexterm zone="mitkrb krb5kdc">
+<primary sortas="b-krb5kdc">krb5kdc</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="kshd">
+<term><command>kshd</command></term>
+<listitem><para>is the server that responds to
+<command>rsh</command> requests.</para>
+<indexterm zone="mitkrb kshd">
+<primary sortas="b-kshd">kshd</primary>
+</indexterm></listitem>
+</varlistentry>
+
 <varlistentry id="ksu">
 <term><command>ksu</command></term>
 <listitem><para>is the super user program using Kerberos protocol.
@@ -551,6 +581,112 @@ become super users.</para>
 <primary sortas="b-kvno">kvno</primary>
 </indexterm></listitem>
 </varlistentry>
+
+<varlistentry id="login.krb5">
+<term><command>login.krb5</command></term>
+<listitem><para>is a kerberized login program.</para>
+<indexterm zone="mitkrb login">
+<primary sortas="b-login.krb5">login.krb5</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="rcp-mitkrb">
+<term><command>rcp</command></term>
+<listitem><para>is a kerberized rcp client program.</para>
+<indexterm zone="mitkrb rcp">
+<primary sortas="b-rcp">rcp</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="rlogin">
+<term><command>rlogin</command></term>
+<listitem><para>is a kerberized rlogin client program.</para>
+<indexterm zone="mitkrb rlogin">
+<primary sortas="b-rlogin">rlogin</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="rsh-mitkrb">
+<term><command>rsh</command></term>
+<listitem><para>is a kerberized rsh client program.</para>
+<indexterm zone="mitkrb rsh">
+<primary sortas="b-rsh">rsh</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="telnet-mitkrb">
+<term><command>telnet</command></term>
+<listitem><para>is a kerberized telnet client program.</para>
+<indexterm zone="mitkrb telnet">
+<primary sortas="b-telnet">telnet</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="telnetd-mitkrb">
+<term><command>telnetd</command></term>
+<listitem><para>is a kerberized telnet server.</para>
+<indexterm zone="mitkrb telnetd">
+<primary sortas="b-telnetd">telnetd</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="libcom_err">
+<term><filename class='libraryfile'>libcom_err.[so,a]</filename></term>
+<listitem><para>implements the Kerberos library error code.</para>
+<indexterm zone="mitkrb libcom_err">
+<primary sortas="c-libcom_err">libcom_err.[so,a]</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="libgssapi-mitkrb">
+<term><filename class='libraryfile'>libgssapi.[so,a]</filename></term>
+<listitem><para>contain the Generic Security Service Application
+Programming
+Interface (<acronym>GSSAPI</acronym>) functions which provides security
+services to callers in a generic fashion, supportable with a range of
+underlying mechanisms and technologies and hence allowing source-level
+portability of applications to different environments.</para>
+<indexterm zone="mitkrb libgssapi">
+<primary sortas="c-libgssapi">libgssapi.[so,a]</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="libkadm5clnt-mitkrb">
+<term><filename
+class='libraryfile'>libkadm5clnt.[so,a]</filename></term>
+<listitem><para>contains the administrative authentication and password
+checking functions required by Kerberos 5 client-side programs.</para>
+<indexterm zone="mitkrb libkadm5clnt">
+<primary sortas="c-libkadm5clnt">libkadm5clnt.[so,a]</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="libkadm5srv-mitkrb">
+<term><filename class='libraryfile'>libkadm5srv.[so,a]</filename></term>
+<listitem><para>contain the administrative authentication and password
+checking functions required by Kerberos 5 servers.</para>
+<indexterm zone="mitkrb libkadm5srv">
+<primary sortas="c-libkadm5srv">libkadm5srv.[so,a]</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="libkdb5">
+<term><filename class='libraryfile'>libkdb5.[so,a]</filename></term>
+<listitem><para>is a Kerberos 5
+authentication/authorization database access library.</para>
+<indexterm zone="mitkrb libkdb5">
+<primary sortas="c-libkdb5">libkdb5.[so,a]</primary>
+</indexterm></listitem>
+</varlistentry>
+
+<varlistentry id="libkrb5-mitkrb">
+<term><filename class='libraryfile'>libkrb5.[so,a]</filename></term>
+<listitem><para>is an all-purpose Kerberos 5 library.</para>
+<indexterm zone="mitkrb libkrb5">
+<primary sortas="c-libkrb5">libkrb5.[so,a]</primary>
+</indexterm></listitem>
+</varlistentry>
+
 </variablelist>
 
 </sect2>