[12011] in Kerberos-V5-bugs

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[krbdev.mit.edu #6886] SVN Commit

daemon@ATHENA.MIT.EDU (Tom Yu via RT)
Thu Jun 9 17:08:46 2011

Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Tom Yu via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6886@krbdev.mit.edu>
Message-ID: <rt-6886-34096.11.6989017984113@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6886'":;"'AdminCc of krbdev.mit.edu Ticket #6886'":;@MIT.EDU
Date: Thu,  9 Jun 2011 17:08:44 -0400 (EDT)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu


pull up r24750 from trunk

 ------------------------------------------------------------------------
 r24750 | ghudson | 2011-03-28 19:35:54 -0400 (Mon, 28 Mar 2011) | 11 lines

 ticket: 6886
 target_version: 1.9.1
 tags: pullup

 Remove the weak key checks from the builtin rc4 enc provider.  There
 is no standards support for avoiding RC4 weak keys, so rejecting them
 causes periodic failures.  Heimdal and Microsoft do not check for weak
 keys.  Attacks based on these weak keys are probably thwarted by the
 use of a confounder, and even if not, the reduction in work factor is
 not terribly significant for 128-bit keys.

http://src.mit.edu/fisheye/changelog/krb5/?cs=24951
Commit By: tlyu
Revision: 24951
Changed Files:
U   branches/krb5-1-9/src/lib/crypto/builtin/enc_provider/rc4.c

_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs

home	help	back	first	fref	pref	prev	next	nref	lref	last	post