Encrypted Authentication

[Someone]

Erik Arneson wrote:

> Hi everybody,
> 
> I'm new to the list and to Kerberos, so I apologize if this is a FAQ.
> 
> In my rather brief amount of reading, I've gotten the impression that
> Kerberos uses DES encryption for the network-based authentication.  As
> DES is relatively insecure, is there any way to force 3DES or other
> encryption algorithms to be used?  How?
> 
> Thanks!
> 
> 

you can use 3DES if you KDC support's it, on your client in krb5.conf 
what you will need is to specify default_tkt_enctypes and 
default_tgs_enctypes to 3DES.

Regards