RFR: 8139348: Deprecate 3DES and RC4 in Kerberos [v2]
Weijun Wang
weijun at openjdk.java.net
Wed Feb 24 22:25:52 UTC 2021
> Deprecate des3-hmac-sha1 (etype 16) and rc4-hmac (etype 23). User can add "allow_weak_crypto = true" in krb5.conf to re-enable them (plus the DES-based etypes deprecated long ago).
Weijun Wang has updated the pull request incrementally with one additional commit since the last revision:
test updates
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/2701/files
- new: https://git.openjdk.java.net/jdk/pull/2701/files/1b2764fd..146bc47a
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=2701&range=01
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=2701&range=00-01
Stats: 42 lines in 5 files changed: 22 ins; 5 del; 15 mod
Patch: https://git.openjdk.java.net/jdk/pull/2701.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/2701/head:pull/2701
PR: https://git.openjdk.java.net/jdk/pull/2701
More information about the security-dev
mailing list