On Fri, 26 Jul 2013 09:45:13 -0500
Andrew Deason wrote:
> To summarize: in MIT you do not want any DES keys in rxkad.keytab or
> in the KDC's db. In Heimdal you do not want any DES keys in
> rxkad.keytab, but you must have a DES key in the KDC's db due to how
> it selects session keys. (This is f
On Fri, 26 Jul 2013, Andrew Deason wrote:
On Thu, 25 Jul 2013 19:12:54 -0400 (EDT)
Benjamin Kaduk wrote:
In going over the re-keying document, a few more questions popped
into my mind that weren't clear from my reading of the document.
In the "Basic" procedure for MIT, it mentions ensuring t
On Thu, 25 Jul 2013 19:12:54 -0400 (EDT)
Benjamin Kaduk wrote:
> > In going over the re-keying document, a few more questions popped
> > into my mind that weren't clear from my reading of the document.
> >
> > In the "Basic" procedure for MIT, it mentions ensuring that DES
> > should not be one o
