[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Generic Security Service Library (GSSLib) 0.1.1

From: Simon Josefsson
Subject: Generic Security Service Library (GSSLib) 0.1.1
Date: Fri, 03 Apr 2009 02:54:45 +0200
User-agent: Gnus/5.110011 (No Gnus v0.11) Emacs/23.0.90 (gnu/linux)

GSSLib is an implementation of the Generic Security Service Application
Program Interface (GSS-API).  GSS-API is used by network servers to
provide security services.  For example, GSS can be used to authenticate
a client against SMTP or IMAP servers.  GSS consists of a library, a
manual, and a command line tool for debugging purposes.

Noteworthy changes since the last version:

* Version 0.1.1 (released 2009-04-03)

** libgss: Fix memory leak in gss_release_oid_set.

** libgss: Fix bug that prevented error messages from being translated.

** libgss krb5: no longer supports service names without hostname.
The function gss_canonicalize_name will return a
GSS_KRB5_S_G_BAD_SERVICE_NAME minor status code if you pass it a
service name without a @hostname part.  The reason is that there is no
secure way to find a canonical name of the local host inside the
library.  Instead, the application must provide one.

** tests: Fix debug output and memory leaks.

** Install a libgss-*.def file when building under MinGW.

** Build fixes for MinGW.
The krb5 mechanism now builds under MinGW as well.

** API and ABI modifications.
No changes since last version.

While written to be flexible with regards to different GSS mechanisms,
the only currently supported mechanism is Kerberos 5 via GNU Shishi.
Mutual and non-mutual authentication, as client and server, is
supported.  Message privacy protection using DES and 3DES is supported.

GSS aims to be internationalized, thread safe and portable.  GSS is
written in ANSI/ISO C89, and has been ported to numerous platforms, even
cross compiled to embedded platforms such as Motorola Coldfire.

GSS is a GNU project, and is licensed under the GNU General Public
License version 3 or later.

Improving GSS is costly, but you can help!  We are looking for
organizations that find GSS useful and wish to contribute back.  You can
contribute by reporting bugs, improve the software, or donate money or

Commercial support contracts for GSS are available, and they help
finance continued maintenance.  Simon Josefsson Datakonsult AB, a
Stockholm based privately held company, is currently funding GSS
maintenance.  We are always looking for interesting development

The project's web page is available at:

All manuals are available from:

Specifically, the following formats are available.

The main manual: - HTML format - PDF format

If you need help to use GNU GSS, or want to help others, you are invited
to join our help-gss mailing list, see:

Here are the compressed sources of the entire package: (1.6MB) (OpenPGP signature)

Here are the build reports for various platforms:

Daily builds of the package are available from:

The software is cryptographically signed by the author using an
OpenPGP key identified by the following information:

pub   1280R/B565716F 2002-05-05 [expires: 2010-02-22]
      Key fingerprint = 0424 D4EE 81A0 E3D1 19C6  F835 EDA2 1E94 B565 716F
uid                  Simon Josefsson <address@hidden>
uid                  Simon Josefsson <address@hidden>
sub   1280R/4D5D40AE 2002-05-05 [expires: 2009-04-21]

The key is available from:

Here are the SHA-1 and SHA-224 checksums:

34b69fe76de5c39ca0e0c2072030b67e83dbedc6  gss-0.1.1.tar.gz

45fbe678d6b363456cc7c72384b18442eb09f989defc9aca3f73e613  gss-0.1.1.tar.gz

Happy hacking,

Attachment: pgpmAuMTYtHpi.pgp
Description: PGP signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]