[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?

To: allbery@kf8nh.apk.net
Subject: Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
From: Assar Westerlund <assar@sics.se>
Date: 13 Sep 1999 02:58:09 +0200
Cc: heimdal-discuss@sics.se
In-Reply-To: 's message of "Thu, 2 Sep 1999 17:28:02 -0400 (EDT)"
References: <199909022128.RAA26849@speaker.kf8nh.apk.net>
Sender: owner-heimdal-discuss@sics.se

<allbery@kf8nh.apk.net> writes:
> Not true.  Enctypes, according to the code, are e.g. "des-cbc-crc"; the
> problem is that krb5 authentication doesn't work unless there is a
> (krb5-specific) des3-cbc-sha1 key defined.

That should not be the case and I know of people running Heimdal with
just DES keys so something else is rotten in the state of Denmark.

> The krb5 auth code appears to try the default salt first, then the AFS
> salt.

The KDC does send back the salt information, including the type and
the salt-string.

/assar

Follow-Ups:
- Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
  - From: <allbery@kf8nh.apk.net>

References:
- Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
  - From: <allbery@kf8nh.apk.net>

Prev by Date: Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
Next by Date: Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
Prev by thread: Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
Next by thread: Re: 0.1m: krb4 is krb4, krb5 is krb5, never the twain shall meet?
Index(es):
- Date
- Thread