[OpenAFS] MIT kerberos 1.8 is released and disabled single DES by default

Russ Allbery rra@stanford.edu
Tue, 02 Mar 2010 16:52:53 -0800


Russ Allbery <rra@stanford.edu> writes:

> That fixes aklog and klog.krb5 to enable DES explicitly if the Kerberos
> implementation disables DES by default.

Oh, it's worth noting that if you build against pre-1.8 and then upgrade
the Kerberos libraries without rebuilding OpenAFS, you won't get the fix
for weak crypto since it's enabled only if the necessary function is found
by configure.

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>