[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
What should I put in the [kadmin] default_keys line to get AES keys generated?
I'm guessing it's something like:
default_keys = v4 . . . aes256_cts_hmac_sha1:pw-salt
Also any comments on interoperability with implementations like
Solaris 8 and Microsoft that don't support aes? There are situations
where I want to support full compatibility and use des-cbc-crc, and
there are others where I need better security than that and must use
aes256. A given user may need to operate with both kinds of servers.
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz@jpl.nasa.gov, or email@example.com