Package: krb5-config
Version: 2.3
The /etc/krb5.conf that is produced by krb5-config has a lot of things
which are no longer useful. A few examples in particular:
It contains settings that were only used for krb4, but krb4 is no longer
supported.
It specifies a port number for kdc entries under [realms] where that port
number is the default port and could safely be omitted.
It specifies 524 servers, but again, krb4 is not supported. On the other
hand, sites might still be running those 524ds, so maybe this is okay.
It has [realms] entries for many realms which no longer exist.
Under [domain_realm], it has duplicate entries with and without a leading
dot for the domain. These are redundant; the entry with the leading dot
should be removed.
It also mentions the defeault_xxx_enctypes and permitted_enctypes
variables in comments, which is perhaps dangerous.
-Ben
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
