[1715] in Kerberos-V5-bugs
Re: 5.5 bugs
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Fri Nov 10 14:43:46 1995
Date: Fri, 10 Nov 1995 14:43:12 -0500
From: Theodore Ts'o <tytso@MIT.EDU>
To: Brian Reitz <bdr@cray.com>
Cc: krb5-bugs@MIT.EDU, bdr@cray.com
In-Reply-To: Brian Reitz's message of Fri, 10 Nov 1995 10:22:10 -0600 (CST),
<9511101622.AA02028@poplar022>
Preauthentication in the beta 5 release is completely broken. (There
are a reason why it was commented out....) Versions previous to Beta 5
worked, but only in a very limited fashion; the original design which
was there just wasn't general enough.
I've since completely reworked the interfaces in the library, and added
support for the required ENC-TIMESTAMP preauthentication type. I've
also had to add support for a new pseudo-preauth type, ETYPE-INFO, which
is required to make ENC-TIMESTAMP in multiple encryption type
environments, or in environments where you want to support non-standard
salts (for example, the V4 backwards compatibility salt.) The
specifications for the new preauth type, ETYPE-INFO, will be in an
upcoming revision of RFC-1510. People who are interested in an early
copy of the specs can contact me.
- Ted
P.S. The "make clean" problem in util/et is known, and is already fixed
in our development sources. Thanks for mentioning it, though.
