GSS-krb5 and enctype lists, revisited
smichaud at pobox.com
Fri Apr 18 11:26:15 EDT 2003
You've already "extended" RFC 1964 ("The Kerberos Version 5 GSS-API
Mechanism") to add DES3 and RC4. Why not throw in AES, too?
On Fri, 18 Apr 2003, Steven Michaud wrote:
> Why don't you want to support AES in the GSS Kerberos mechanism?
> On Fri, 18 Apr 2003, Ken Raeburn wrote:
> > The current plan for MIT's 1.3 release is to include AES support in
> > the krb5 library, and have it turned on by default, but no support in
> > the GSS Kerberos mechanism. It's looking like this combination could
> > be a problem.
> > ...
More information about the krbdev