The complexity and quality of kerberosV and the fact that almost

nobody is using it doesn't justify to enable it by default.  It will
be disabled and removed from base and possibly be moved to ports.

Discussed with many.  Tests by henning@ reyk@ and others.
ok henning@

diff --git a/share/mk/bsd.own.mk b/share/mk/bsd.own.mk
index ad0c3ad..885bc25 100644 (file)
--- a/share/mk/bsd.own.mk
+++ b/share/mk/bsd.own.mk
@@ -1,4 +1,4 @@
-#      $OpenBSD: bsd.own.mk,v 1.148 2014/04/13 08:35:27 brad Exp $
+#      $OpenBSD: bsd.own.mk,v 1.149 2014/04/22 09:48:51 reyk Exp $
 #      $NetBSD: bsd.own.mk,v 1.24 1996/04/13 02:08:09 thorpej Exp $
 
 # Host-specific overrides
@@ -13,7 +13,7 @@ WARNINGS?=    no
 # Set `SKEY' to `yes' to build with support for S/key authentication.
 SKEY?=         yes
 # Set `KERBEROS5' to `yes' to build with support for Kerberos5 authentication.
-KERBEROS5?=    yes
+KERBEROS5?=    no
 # Set `YP' to `yes' to build with support for NIS/YP.
 YP?=           yes
 # Set `DEBUGLIBS' to `yes' to build libraries with debugging symbols