Re: RFC: Heimdal FreeBSD KDC users

Cy Schubert wrote in <20251006082708.83FA51876@slippy.cwsent.com>:
> In message <aOMTpQ43qBRdRyHz@amaryllis.le-fay.org>, Lexi Winter writes:
> > would it make sense to provide this version of kadmin (+ whatever
> > else is required) as a self-contained port, so people could more
> > easily install it for a one-off migration?  that might also make
> > it less risky to provide on 14.x, if that's useful.

> kadmin from Heimda 1.5.2 cannot be ported without porting all or much of 
> Heimdal 1.5.2. It uses many functions in the various Heimdal libraries. A 
> Heimdal 1.5.2 port might be difficult to maintain as it's sensitive to the 
> OpenSSL in base.

i don't really follow why this preventing adding it as a port.  the
source is in crypto/heimdal, so we could simply take that source and
put it in a port.

it must compile with the version of OpenSSL that's in base, since we
still ship Heimdal in base.  if Heimdal is removed from base, we can
also remove the port, if needed.

the point would be to allow people to migrate their Heimdal 1.5 KDCs
to MIT Kerberos without having to rebuild src twice.