[16032] in Kerberos_V5_Development
Re: Camellia-CCM and defaults
daemon@ATHENA.MIT.EDU (Sam Hartman)
Tue Aug 10 15:54:50 2010
From: Sam Hartman <hartmans@mit.edu>
To: ghudson@mit.edu
Date: Tue, 10 Aug 2010 15:54:37 -0400
In-Reply-To: <201008041647.o74Glkvx018638@outgoing.mit.edu> (ghudson@mit.edu's
message of "Wed, 4 Aug 2010 12:47:46 -0400 (EDT)")
Message-ID: <tsl39um5jlu.fsf@mit.edu>
MIME-Version: 1.0
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
I'd probably prefer yes and no.
Adding something to the supported enctype list can have interop issues
for servers if the server ends up not supporting the enctype.
RC4 was valuable because Windows prior to Vista supported RC4 and DES
but nothing else.
I think it is reasonable for reals that want Camellia-CCM to turn it on
at the KDC level.
--Sam
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
