You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The manpage for krb5.conf contains only enctypes:
des-cbc-crc, des-cbc-md4, des-cbc-md5,
des3-cbc-sha1, arcfour-hmac-md5, aes128-cts-hmac-sha1-96, and
aes256-cts-hmac-sha1-96
while heimdal 7.7.0 clients offer to negotiate additional types
19 hmac-sha256-128-aes128 16 RFC 8009
20 hmac-sha384-192-aes256 24 RFC 8009
per rfc8009.
Would you please update the krb5.conf manpage to include: aes256-cts-hmac-sha384-192, aes128-cts-hmac-sha256-128
to the existing statement:
"valid encryption types are: des-cbc-crc, des-cbc-md4, des-cbc-
md5, des3-cbc-sha1, arcfour-hmac-md5, aes128-cts-hmac-sha1-96,
and aes256-cts-hmac-sha1-96"
(My thanks to Benjamin Kaduk@FreeBSD for pointing me to both the RFC & to you).
The text was updated successfully, but these errors were encountered:
The manpage for krb5.conf contains only enctypes:
des-cbc-crc, des-cbc-md4, des-cbc-md5,
des3-cbc-sha1, arcfour-hmac-md5, aes128-cts-hmac-sha1-96, and
aes256-cts-hmac-sha1-96
while heimdal 7.7.0 clients offer to negotiate additional types
19 hmac-sha256-128-aes128 16 RFC 8009
20 hmac-sha384-192-aes256 24 RFC 8009
per rfc8009.
Would you please update the krb5.conf manpage to include:
aes256-cts-hmac-sha384-192, aes128-cts-hmac-sha256-128
to the existing statement:
"valid encryption types are: des-cbc-crc, des-cbc-md4, des-cbc-
md5, des3-cbc-sha1, arcfour-hmac-md5, aes128-cts-hmac-sha1-96,
and aes256-cts-hmac-sha1-96"
(My thanks to Benjamin Kaduk@FreeBSD for pointing me to both the RFC & to you).
The text was updated successfully, but these errors were encountered: