> * Rework Kerberos support, separating Kerberos4 code > from KerberosV code, and make proper implementation > of Shishi code that works on all platforms we want > to support. > > Maybe Simon could do this? Simon, do you have time? I'm not at all > familiar with Kerberos.
I don't have a lot of time, but I have some interest in seeing this done. I think that we should drop all Kerberos 4 code. Nobody should care about Kerberos 4 anymore since it is insecure (based on DES). The Kerberos V5 stuff in InetUtils worked fine both with MIT/Heimdal/Shishi not so long ago, but we could certainly improve documentation so that it becomes easier to setup and test. However, I agree that we should postpone this for the next release. I think we should get a new release out soon, it was too long ago since the last release, and maybe even try to speed up the process so that we have more frequent releases. Yeah, we did want to release more often. Been over a year now.
