[OpenAFS] AES Support ?

John Hascall john@iastate.edu
Thu, 27 Sep 2007 06:57:17 CDT


> Ok, this picture confuses me a bit.  Actually, it confuses me a lot.

   Sorry, I was speaking in the abstract.
   It is obviously too late to change how existing implementations
   of rx work.  My whole point, if I had one, was that having a
   securityIndex field is made somewhat less useful by there being
   no secure way for the ends to negotiate it.

   Which, coming back full circle, is why we seem to be stuck with
   the icky extra-protocol hack of using afs-k5 vs afs.

John