[992] in Kerberos-V5-bugs
Re: appl/telnet/libtelnet/kerberos.c v4 compat insecurity....
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Mon Dec 19 14:35:33 1994
Date: Mon, 19 Dec 1994 14:35:16 +0500
From: Theodore Ts'o <tytso@MIT.EDU>
To: Ezra Peisach <epeisach@MIT.EDU>
Cc: krb5-bugs@MIT.EDU
In-Reply-To: [991]
Date: Mon, 19 Dec 1994 12:14:09 EST
From: Ezra Peisach <epeisach@MIT.EDU>
Yes, we know that v4 encrypted telnet is not optimal, but there
was a hole found recently... The changes to the v4 side should
probably be integrated back in.... (about a three line change)
Actually, if you take a close look at the patches that will soon be
shortly sent out (in the next day or so), you will notice that they were
generated out of the krb5 tree. :-)
- Ted
