Encrypted Authentication
Erik Arneson
erik at aarg.net
Wed Apr 10 12:40:32 EDT 2002
On 10 April 2002, Someone <please at nospam.net> wrote:
> Erik Arneson wrote:
> > In my rather brief amount of reading, I've gotten the impression that
> > Kerberos uses DES encryption for the network-based authentication. As
> > DES is relatively insecure, is there any way to force 3DES or other
> > encryption algorithms to be used? How?
>
> you can use 3DES if you KDC support's it, on your client in krb5.conf
> what you will need is to specify default_tkt_enctypes and
> default_tgs_enctypes to 3DES.
>
> Regards
Thanks, that's the kind of thing I was looking for. Is there any way to
get krlogin to use 3DES, or should I just use a patched version of
OpenSSH instead?
--
;; Erik Arneson <erik at aarg.net> AARG Net <http://www.aarg.net/> ;;
;; GPG Key ID: 1024D/43AD6AB8 <http://erik.arneson.org/> ;;
;; "Resistance to tyrants is obedience to God!" - Thomas Jefferson ;;
More information about the Kerberos
mailing list