[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problems with klog

To: "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>
Subject: Re: Problems with klog
From: Love <lha@stacken.kth.se>
Date: 19 Sep 2000 14:26:31 +0200
Cc: heimdal-discuss@sics.se
In-Reply-To: "Brandon S. Allbery KF8NH"'s message of "Tue, 19 Sep 2000 08:15:37 -0400"
References: <11870000.969365737@tully>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.0804 (Gnus v5.8.4) Emacs/20.2

"Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu> writes:

> On 09/19/00 13:37:07 +0200, Love <lha@stacken.kth.se> wrote:
> +-----
> | Note that if you want to make sure that you keys are salted they way you
> | want them, you'll need to dump the principal with ``kadmin dump'' and read
> | the output, since you can't see what type of salting there is with
> | ``kadmin get -l <principal>''.
> +--->8
> 
> What?!  When did this change, and why?
> 
> (0.2f... upgrade scheduled for next time I'm unburied)
> kadmin> get -l allbery
> (...)
>          Keytypes(salts): des-cbc-md5(afs3-salt), des-cbc-md4(afs3-salt), 
> des-cbc-crc(afs3-salt)


Dunno why, but I saw it when I got Heimdal interop with w2k.

kadmin> get -l lha
(...)
Keytypes(salts): des3-cbc-sha1(pw-salt), des-cbc-md5(pw-salt),
  des-cbc-md4(pw-salt), des-cbc-crc(pw-salt), des-cbc-md5(pw-salt),
  des-cbc-md4(pw-salt), des-cbc-crc(pw-salt)

See the diffrence between "des-cbc-crc(pw-salt)" and
                          "des-cbc-crc(pw-salt)" ?

One is with krb5 salt and the other with krb4 salt. Result of:

  [kadmin]default_keys = des3:pw-salt des:pw-salt des:pw-salt:

The same if you explicit set the salt to a string.

Love

References:
- Re: Problems with klog
  - From: "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>

Prev by Date: Re: Problems with klog
Next by Date: Re: Problems with klog
Prev by thread: Re: Problems with klog
Next by thread: Re: Problems with klog
Index(es):
- Date
- Thread