Just wondering, has there been any work to make a FIPS-validated MIT Kerberos client implementation? I'm guessing that there is some built-in crypto in MIT Kerberos, or do I have that wrong? If the crypto is not built-into MIT Kerberos client, is it implemented by OpenSSL or some other cryptography library? -- Thomas Harning Jr.