| Port details |
- krb5-122 MIT implementation of RFC 4120 network authentication service
- 1.22.1 security
 =0      Package not present on quarterly.This port was created during this quarter. It will be in the next quarterly branch but not the current one. - Maintainer: cy@FreeBSD.org
- Port Added: 2025-08-06 07:36:09
- Last Update: 2025-08-21 05:23:43
- Commit Hash: 044964a
- License: MIT
- WWW:
- https://web.mit.edu/kerberos/
- Description:
- Kerberos V5 is an authentication system developed at MIT.
Abridged from the User Guide:
Under Kerberos, a client sends a request for a ticket to the
Key Distribution Center (KDC). The KDC creates a ticket-granting
ticket (TGT) for the client, encrypts it using the client's
password as the key, and sends the encrypted TGT back to the
client. The client then attempts to decrypt the TGT, using
its password. If the client successfully decrypts the TGT, it
keeps the decrypted TGT, which indicates proof of the client's
identity. The TGT permits the client to obtain additional tickets,
which give permission for specific services.
Since Kerberos negotiates authenticated, and optionally encrypted,
communications between two points anywhere on the internet, it
provides a layer of security that is not dependent on which side of a
firewall either client is on.
The Kerberos V5 package is designed to be easy to use. Most of the
commands are nearly identical to UNIX network programs you are already
used to. Kerberos V5 is a single-sign-on system, which means that you
have to type your password only once per session, and Kerberos does
the authenticating and encrypting transparently.
Jacques Vidrine <n@nectar.com>
  ¦  ¦  ¦  ¦ 
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - There is no configure plist information for this port.
- Dependency lines:
-
- krb5-122>0:security/krb5-122
- Conflicts:
- CONFLICTS:
- heimdal
- krb5
- krb5-11*
- krb5-120
- CONFLICTS_BUILD:
- To install the port:
- cd /usr/ports/security/krb5-122/ && make install clean
- To add the package, run one of these commands:
- pkg install security/krb5-122
- pkg install krb5-122
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: krb5-122
- Package flavors (<flavor>: <package>)
- default: krb5-122
- ldap: krb5-ldap-122
- distinfo:
- TIMESTAMP = 1755752451
SHA256 (krb5-1.22.1.tar.gz) = 1a8832b8cad923ebbf1394f67e2efcf41e3a49f460285a66e35adec8fa0053af
SIZE (krb5-1.22.1.tar.gz) = 8747101
Packages (timestamps in pop-ups are UTC):
- Slave ports:
-
- security/krb5
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- gmake>=4.4.1 : devel/gmake
- gettext-runtime>=0.22_1 : devel/gettext-runtime
- libtool : devel/libtool
- pkgconf>=1.3.0_1 : devel/pkgconf
- msgfmt : devel/gettext-tools
- autoconf>=2.72 : devel/autoconf
- automake>=1.17 : devel/automake
- perl5>=5.42.r<5.43 : lang/perl5.42
- Library dependencies:
-
- libintl.so : devel/gettext-runtime
- libreadline.so.8 : devel/readline
- There are no ports dependent upon this port
Configuration Options:- ===> The following configuration options are available for krb5-122-1.22.1:
DNS_FOR_REALM=off: Enable DNS lookups for Kerberos realm names
DOCS=on: Build and/or install documentation
EXAMPLES=on: Build and/or install examples
LDAP=off: LDAP protocol support
LMDB=off: OpenLDAP Lightning Memory-Mapped Database support
NLS=on: Native Language Support
====> Command line editing for kadmin and ktutil: you can only select none or one of them
READLINE=on: Command line editing via libreadline
LIBEDIT=off: Command line editing via libedit
LIBEDIT_BASE=off: Use libedit in FreeBSD base
===> Use 'make config' to modify these settings
- Options name:
- security_krb5-122
- USES:
- autoreconf compiler:c++11-lang cpe gmake gettext-runtime gssapi:bootstrap,mit libtool:build localbase perl5 pkgconfig ssl gettext readline
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|
| Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
| Commit | Credits | Log message |
|---|
1.22.1
21 Aug 2025 05:23:43
 |
Cy Schubert (cy) |
security/krb5-122: Update to 1.22.1
Security: CVE-2025-57736 |
1.22_1
20 Aug 2025 14:42:32
|
Cy Schubert (cy) |
security/krb5-122: Fix KRB5 GsS MIC Verification
Apply same fix as src/f96110babbe1, also upstream/83cd76b11. This
fixes upstream bug #9181. The result of the bug is the acceptance
of MIC tokens with invalid checksums.
Security: CVE-2025-57736 |
1.22
20 Aug 2025 14:41:34
|
Cy Schubert (cy) |
security/krb5-122: Regenerate patches
Regenerate patches using makepatch. |
1.22
09 Aug 2025 03:19:47
|
Cy Schubert (cy) |
security/krb5-122: Fix package name when not a slave port
When not a slave port this port must have 122 appended to it giving it
a unique package name.
Fixes: a7490b1dfbd5
Reported by: antoine |
1.22
06 Aug 2025 07:32:14
|
Cy Schubert (cy) |
security/krb5-122: Add new port
MIT KRB5 1.22 was just released. Import it into ports. It now becomes
the default KRB5. |
As an Amazon Associate I earn from qualifying purchases.