[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bad encryption length, other problems with 0.5+



I wrote:
> On Thu, Mar 27, 2003 at 07:16:02PM -0500, Brendan Cully wrote:
> > I believe my brother posted a workaround for this several months ago:
> > 
> > http://www.stacken.kth.se/lists/heimdal-discuss/2002-10/msg00032.html
> 
> That's right, but I continued to have issues with kerberos that I
> never got around to fixing since it was easier just to move to ssh
> over telnet, and no one appeared to be interested anyway.

I (finally) found out what caused kerberos authentication to continue
breaking: keytabs written with the old version of kerberos would,
apparently, include four null bytes in the keyvalue, which again
caused a key length error during the krb5_rd_req.  Creating a new
keytab solved the problem.  Yay!

--aidan