random to key from password
Sam Hartman
hartmans at MIT.EDU
Mon Sep 27 16:04:32 EDT 2010
>>>>> "Russ" == Russ Allbery <rra at stanford.edu> writes:
Russ> Nicolas Williams <Nicolas.Williams at oracle.com> writes:
>> I'm saying it's what it should do. I.e., the kadmin/kadm5 client
>> should be modified to randomize keys by doing a cpw with a
>> randomized password.
Russ> If you made this change globally (rather than making it an
Russ> option, such as in Heimdal), then it would apply to
Russ> keytab-only principals such as host/* keys as well. Do we
Russ> lose any security benefit from having all the enctypes have
Russ> independent keys the way that we get now with -randkey? (Or
Russ> at least I always assumed we got that now; maybe we don't?)
Hmm.
Possibly.
If one of the string2key functions is easier to preimage than another,
then you could potentially find one of the stronger keys more easily.
That could be an issue in a case such as encryption of server tickets
where the KDC would not actually use the weaker enctype.
More information about the krbdev
mailing list