[16290] in Kerberos_V5_Development
Re: wrong checksum type for arcfour-hmac-md5
daemon@ATHENA.MIT.EDU (Luke Howard)
Wed Sep 15 12:01:03 2010
Mime-Version: 1.0 (Apple Message framework v1081)
From: Luke Howard <lhoward@mit.edu>
In-Reply-To: <1284566336.5992.1659.camel@ray>
Date: Wed, 15 Sep 2010 18:00:54 +0200
Message-Id: <43FA0D9E-ED62-42EA-AA28-2E145E744075@mit.edu>
To: Greg Hudson <ghudson@mit.edu>
Cc: "krbdev@mit.edu Dev List" <krbdev@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On 15/09/2010, at 5:58 PM, Greg Hudson wrote:
> On Wed, 2010-09-15 at 11:50 -0400, Luke Howard wrote:
>>> But windows doesn't use it...
>>
>> Hmm, OK, that's a fair argument then.
>>
>> Greg?
>
> What's the proposed change, exactly? Making the mandatory-to-implement
> checksum for RC4 be an unkeyed checksum seems problematic.
That's the proposed change. It doesn't use the simplified crypto profile so it probably won't affect krb5_encrypt/GSS, but it doesn't sound ideal does it.
-- Luke
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
