> > Luke's changes introduce a mechanism independent API for extracting > the session key from a context. There is discussion about DES in this thread, why is that an issue and why is it not disabled ? To talk to msft products you need the key extraction, why not just tag it with the keytype and let application do the wrong thing? Love