>>>>> "Mike" == Mike Friedman <mikef at ack.Berkeley.EDU> writes:
Mike> Sam,
Mike> If I don't use DES3 keys at all in my KDC, do I still need
Mike> to run with 'V4 none' or 'V4 disable' to be protected?
Mike> Mike
Yes.
There were two issues:
1) v4 is broken
2) MIT's 3DES support for v4 is more broken than v4 normally is.