On Wed, Sep 02, 2009 at 07:29:48AM +0800, Max (Weijun) Wang wrote: > But a customer wants that, and I cannot find a word in RFC disallowing > it, so wondering what you guys are doing.
Great question. The IETF KRB WG list (ietf-krb-wg at anl.gov) is the best place to ask such a question. As far as I can tell from the _specs_, the answer is yes, empty passwords are supported for the 1DES, 3DES and AES enctypes (I didn't look at arcfour). Nico --
