Kerberos PAKE Preauth Mechanism

Nathaniel McCallum npmccallum at
Tue Jan 27 02:05:51 EST 2015

For some background to where we are going, please check out this page:

I plan to document all this stuff in the coming weeks. But the big
reveal is a new preauth mech:

All the caveats apply: this is completely insecure and will steal your
passwords. Don't use it anywhere but a test setup.

You will also need a patch to enable support for

Comments/reviews welcome.


More information about the krbdev mailing list