[email protected] (Alfred M. Szmidt) writes: > * Rework Kerberos support, separating Kerberos4 code > from KerberosV code, and make proper implementation > of Shishi code that works on all platforms we want > to support. > > Maybe Simon could do this? Simon, do you have time? I'm not at all > familiar with Kerberos.
I don't have a lot of time, but I have some interest in seeing this done. I think that we should drop all Kerberos 4 code. Nobody should care about Kerberos 4 anymore since it is insecure (based on DES). The Kerberos V5 stuff in InetUtils worked fine both with MIT/Heimdal/Shishi not so long ago, but we could certainly improve documentation so that it becomes easier to setup and test. However, I agree that we should postpone this for the next release. I think we should get a new release out soon, it was too long ago since the last release, and maybe even try to speed up the process so that we have more frequent releases. /Simon
