Until all services including GSS-based ones can support AES, we don't
want it in the default supported enctypes list on the KDC.
ticket: new
tags: pullup
target_version: 1.3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15428
dc483132-0cff-0310-8789-
dd5450dbe970
+2003-05-13 Ken Raeburn <raeburn@mit.edu>
+
+ * definitions.texinfo: Updated DefaultSupportedEnctypes.
+
2003-05-12 Sam Hartman <hartmans@mit.edu>
* definitions.texinfo: Default v4 mode is now none
@comment line 622
@set DefaultDefaultPrincipalExpiration 0
@comment line 639
-@set DefaultSupportedEnctypes aes256-cts-hmac-sha1:normal des3-hmac-sha1:normal des-cbc-crc:normal
+@set DefaultSupportedEnctypes des3-hmac-sha1:normal des-cbc-crc:normal
@comment line 705
@ignore
+2003-05-13 Ken Raeburn <raeburn@mit.edu>
+
+ * alt_prof.c (kadm5_get_config_params): Remove aes256 from the
+ default supported enctypes list for now.
+
2003-05-04 Sam Hartman <hartmans@mit.edu>
* chpass_util_strings.et: Replace reference to ovpasswd with kpasswd
if (aprofile)
krb5_aprof_get_string(aprofile, hierarchy, TRUE, &svalue);
if (svalue == NULL)
- svalue = strdup("aes256-cts-hmac-sha1-96:normal des3-hmac-sha1:normal des-cbc-crc:normal");
+ svalue = strdup("des3-hmac-sha1:normal des-cbc-crc:normal");
params.keysalts = NULL;
params.num_keysalts = 0;
projects / krb5.git / commitdiff