söndag 12 oktober 2008

DES will die in Heimdal 1.3

A long long time ago DES was standardized (1973, before I was born). Some 30 years later (2003) is was withdrawn as a standard by NIST, today 5 years later, its time for DES to finally die. Last year you could brute force DES in 6.4 days by buying a machine for $10000. So last year was the time for you to migrate to better encryption types for your Kerberos realm.

If you really are in love with DES and can't stand to be without it, now its the time to add "[libdefaults] allow_weak_crypto = true"to your configuration file so that your love wont die when you upgrade next time. If you want to check your configuration, the code is already commited to trunk in the source repro.

Application that will stop working are old Kerberos 4 tools and telnet/telnetd.

Heimdal-1.3 will deprecate DES

PS there is an exception for AFS to allow it still to use DES encryption types.

3 kommentarer:

  1. I truly love your site.. Great colors & theme.
    Did you make this amazing site yourself? Please reply
    back as I’m hoping to create my own personal website and would love
    to know where you got this from or just what the theme is called.
    Many thanks!

  2. However I wish to say that this write-up very compelled me to take a look at and do it! Your writing taste has been surprised me. Thank you

  3. This kind of behavioural data is extra correct than retrospective self-report, though it's limited in that it does not essentially mirror all of an individual's informal gambling or gambling with other suppliers. A variety of surveys assessed gambling engagement for every kind of gambling obtainable domestically utilizing structured questions. Reports assessing latest gambling have previously been found to have good reliability . A variety of the cross-sectional research used parallel questions to obtain a description of the person's typical gambling in the time prior (e.g., 6, 12 months) to the 카지노사이트 pandemic. Three longitudinal research had self-reports from earlier time durations utilizing the identical assessment questions and, as such, assessed adjustments over time.