On 4/26/2010 3:44 AM, Holger Rauch wrote: > Hi Simon, > > thanks for your reply. > > On Sun, 25 Apr 2010, Simon Wilkinson wrote: > >> [...] >> Firstly, as I (and others) have mentioned, OpenAFS doesn't use DES, it uses >> an encryption algorithm called fcrypt, which is a DES derivative. > > I got the impression that DES was used because one has to use > enable_weak_crypto with recent MIT Kerberos versions, which enables DES.
The key form that is used with fcrypt is the same as DES (aka 56-bit parity checked keys). The encryption itself is not. Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
