[OpenAFS] MIT kerberos 1.8 is released and disabled single DES by default

Russ Allbery rra@stanford.edu
Tue, 02 Mar 2010 16:52:53 -0800

Russ Allbery <rra@stanford.edu> writes:

> That fixes aklog and klog.krb5 to enable DES explicitly if the Kerberos
> implementation disables DES by default.

Oh, it's worth noting that if you build against pre-1.8 and then upgrade
the Kerberos libraries without rebuilding OpenAFS, you won't get the fix
for weak crypto since it's enabled only if the necessary function is found
by configure.

Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>