HCoop / hcoop / debian / libapache-mod-waklog.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 806910b) | patch
Enable weak crypto using secret API for openafs.
authorClinton Ebadi <clinton@unknownlamer.org>
Sat, 8 Sep 2012 05:33:29 +0000 (01:33 -0400)
committerClinton Ebadi <clinton@unknownlamer.org>
Sat, 8 Sep 2012 05:33:29 +0000 (01:33 -0400)
commitbd03fc62d1e34f2a1d51d2e27a434c180d3f42e4
tree0eb798afd3187904136e288d745dbbb59b93aff1tree | snapshot (tar.gz zip)
parent806910b3eced67a96d2eb9dffbb6953266a2d237commit | diff
Enable weak crypto using secret API for openafs.
Modern Kerberos disallows DES crypto methods, but openafs for protocol
reasons is stuck using des for the time being. Rather than force all
afs realms to enable weak crypto, MIT added an undocumented API call
to allow openafs to skirt around the weak crypto restrictions. Since
we're implementing aklog for Apache, we have to be evil and use it too
in order to acquire tokens on a system where weak crypto is not
permitted.
mod_waklog.c diff | blob | blame | history
libapache-mod-waklog packaging