[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problems with klog

"Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu> writes:

> On 09/19/00 13:37:07 +0200, Love <lha@stacken.kth.se> wrote:
> +-----
> | Note that if you want to make sure that you keys are salted they way you
> | want them, you'll need to dump the principal with ``kadmin dump'' and read
> | the output, since you can't see what type of salting there is with
> | ``kadmin get -l <principal>''.
> +--->8
> What?!  When did this change, and why?
> (0.2f... upgrade scheduled for next time I'm unburied)
> kadmin> get -l allbery
> (...)
>          Keytypes(salts): des-cbc-md5(afs3-salt), des-cbc-md4(afs3-salt), 
> des-cbc-crc(afs3-salt)

Dunno why, but I saw it when I got Heimdal interop with w2k.

kadmin> get -l lha
Keytypes(salts): des3-cbc-sha1(pw-salt), des-cbc-md5(pw-salt),
  des-cbc-md4(pw-salt), des-cbc-crc(pw-salt), des-cbc-md5(pw-salt),
  des-cbc-md4(pw-salt), des-cbc-crc(pw-salt)

See the diffrence between "des-cbc-crc(pw-salt)" and
                          "des-cbc-crc(pw-salt)" ?

One is with krb5 salt and the other with krb4 salt. Result of:

  [kadmin]default_keys = des3:pw-salt des:pw-salt des:pw-salt:

The same if you explicit set the salt to a string.