Kerberos Client C.1.3.5.09 Release Notes
• Support for TCP
Kerberos Client libraries can now use TCP to connect to the Key Distribution Center
(KDC). Libraries can use TCP to communicate with Microsoft KDCs (domain
controllers) if they issue tickets with excess PAC data.
• Security fixes up to version 1.3.5 made by MIT in the open source version of
Kerberos Client.
For detailed product information, installing and configuring instructions,
troubleshooting and sample configuration files, see Configuration Guide for Kerberos
Client Products on HP-UX (5991-7718).
Encryption Types Supported by Kerberos Client
Table 1-3 lists the encryption types supported by Kerberos Client C.1.3.5.09.
Table 1-3 Encryption Types supported by Kerberos Client C.1.3.5.09
DescriptionEncryption Type
DES cbc mode with CRC-32des-cbc-crc
DES cbc mode with RSA-MD4des-cbc-md4
DES cbc mode with RSA-MD5des-cbc-md5
DES cbc mode with RSA-MD5
This encryption type is an alias to the des-cbc-md5 encryption
type. If you specify des in the configuration file, then its behavior
is the same as des-cbc-md5.
des
DES cbc mode rawdes-cbc-raw
Triple DES cbc mode rawdes3-cbc-raw
Triple DES cbc mode with HMAC/sha1des3-cbc-sha1
Triple DES cbc mode with HMAC/sha1
This encryption type is an alias to the des3-cbc-sha1 encryption
type. If you specify des3-hmac-sha1 in the configuration file,
then its behavior is the same as des3-cbc-sha1.
des3-hmac-sha1
Triple DES cbc mode with HMAC/sha1
This encryption type is an alias to the des3-cbc-sha1 encryption
type. If you specify des3-cbc-sha1-kd in the configuration file,
then its behavior is the same as des3-cbc-sha1.
des3-cbc-sha1-kd
DES with HMAC/sha1des-hmac-sha1
ArcFour with HMAC/md5arcfour-hmac
What Is New in This Version 7