[6687] in Kerberos
Re: Kerberos Weakness (COAST Findings)
daemon@ATHENA.MIT.EDU (Steve Lodin)
Sat Feb 17 17:52:13 1996
To: kerberos@MIT.EDU
Date: 17 Feb 1996 17:17:18 -0500
From: swlodin@cs.purdue.edu (Steve Lodin)
In article <4g5jdd$iv4@umbc7.umbc.edu>, pauld@umbc.edu (Paul Danckaert) writes:
> I am somewhat concerned about this.. does anybody have any more information
> on the extent of the problems here, or the status on any bug-fixes?
>
Contact your Kerberos vendor or MIT for fixes. Further details will be
released later.
My first suggestion is don't use any kerberos based on MIT Kerberos
Version 4 for military-grade security requirements.
Steve
--
Steve Lodin
Purdue - swlodin@cs.purdue.edu http://www.cs.purdue.edu/people/swlodin
Delco Electronics - swlodin@delcoelect.com (317)451-0479
Home - swlodin@iquest.net http://www.iquest.net/~swlodin/
