-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The MIT Kerberos Team announces the availability of MIT Kerberos 5
Release 1.18.2. Please see below for a list of some major changes
included, or consult the README file in the source tree for a more
detailed list of significant changes.
RETRIEVING
Hi there:
How can I find out the out of the box default password encryption used?
On a getprinc -- there are 8 shown -- are these all used for the principal?
Number of keys: 8
Key: vno 8, aes256-cts-hmac-sha1-96
Key: vno 8, aes128-cts-hmac-sha1-96
Key: vno 8, des3-cbc-sha1
Key: vno 8, arcfour-hm
On 5/22/20 2:29 PM, Joshua Brodie wrote:
> How can I find out the out of the box default password encryption used?
Kerberos doesn't encrypt passwords(*), but it does store long-term keys
derived from the passwords. This derivation, called the "string-to-key"
operation for the encryption type, is
