Re: Protocol benchmarking / auditing inquiry

Christopher D. Clausen Wed, 14 Feb 2024 11:11:31 -0800

I have used this as a guide, but I think MIT Kerberos version 1.10 isthe latest available:

https://www.cisecurity.org/benchmark/mit_kerberos


Not sure if this is what you are looking for or not.

<<CDC

On 2/14/2024 11:46 AM, Brent Kimberley via Kerberos wrote:

Preferably something smaller and more focused than nmap or OpenSCAP. 😉

From: Brent Kimberley
Sent: Wednesday, February 14, 2024 12:44 PM
To: kerberos@mit.edu
Subject: Protocol benchmarking / auditing inquiry

Hi.
Can anyone point me to some methods to benchmark and/or audit Kerberos v5?

For example, SSH:
                Manual
                               Read the RFCs and specs.
               Semi-automatic.
                               jtesta/ssh-audit: SSH server & client security 
auditing (banner, key exchange, encryption, mac, compression, compatibility, security, 
etc) (github.com)<https://github.com/jtesta/ssh-audit/>
                Automatic
                               SSH Configuration Auditor 
(ssh-audit.com)<https://www.ssh-audit.com/>


TLS example upon request.


________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

Re: Protocol benchmarking / auditing inquiry

Reply via email to