Kerberos Client Version C.1.3.5.10 release notes (5992-0789), June 2010
Table 1-3 Encryption types supported by Kerberos Client C.1.3.5.10 (continued)
DescriptionEncryption Type
DES cbc mode rawdes-cbc-raw
Triple DES cbc mode rawdes3-cbc-raw
Triple DES cbc mode with HMAC/sha1des3-cbc-sha1
Triple DES cbc mode with HMAC/sha1
This encryption type is an alias to the des3-cbc-sha1 encryption type. If
you specify des3-hmac-sha1 in the configuration file, then it’s behavior
is the same as des3-cbc-sha1.
des3-hmac-sha1
Triple DES cbc mode with HMAC/sha1
This encryption type is an alias to the des3-cbc-sha1 encryption type. If
you specify des3-cbc-sha1-kd in the configuration file, then it’s behavior
is the same as des3-cbc-sha1.
des3-cbc-sha1-kd
DES with HMAC/sha1des-hmac-sha1
ArcFour with HMAC/md5arcfour-hmac
ArcFour with HMAC/md5
This encryption type is an alias to the arcfour-hmac encryption type. If
you specify rc4-hmac in the configuration file, then it’s behavior is the
same as arcfour-hmac.
rc4-hmac
ArcFour with HMAC/md5
This encryption type is an alias to the arcfour-hmac encryption type. If
you specify arcfour-hmac-md5 in the configuration file, then it’s behavior
is the same as arcfour-hmac.
arcfour-hmac-md5
Exportable ArcFour with HMAC/md5arcfour-hmac-exp
Exportable ArcFour with HMAC/md5
This encryption type is an alias to the arcfour-hmac-exp encryption
type. If you specify rc4-hmac-exp in the configuration file, then it’s
behavior is the same as arcfour-hmac-exp.
rc4-hmac-exp
Exportable ArcFour with HMAC/md5
This encryption type is an alias to the arcfour-hmac-exp encryption
type. If you specify arcfour-hmac-md5-exp in the configuration file,
then it’s behavior is the same as arcfour-hmac-exp.
arcfour-hmac-md5-exp
AES-128 CTS mode with 96-bit SHA-1 HMACaes128-cts-hmac-sha1-96
AES-128 CTS mode with 96-bit SHA-1 HMAC
This encryption type is an alias to the aes128-cts-hmac-sha1-96
encryption type. If you specify aes128-cts in the configuration file, then
it’s behavior is the same as aes128-cts-hmac-sha1-96.
aes128-cts
AES-256 CTS mode with 96-bit SHA-1 HMACaes256-cts-hmac-sha1-96
AES-256 CTS mode with 96-bit SHA-1 HMAC
This encryption type is an alias to the aes256-cts-hmac-sha1-96
encryption type. If you specify aes256-cts in the configuration file, then
it’s behavior is the same as aes256-cts-hmac-sha1-96.
aes256-cts
Known problems and workarounds
If a kernel threaded DCE application linking to libdcekt uses PAM Kerberos for authentication,
it results in core dump. This occurs because of a symbol clash between PAM Kerberos and DCE
Known problems and workarounds 7