#4740 stop using 3des and rc4 by default
Closed: Fixed None Opened 4 years ago by simo.

As time goes on we should stop adding 3des and rc4 algorithms to the default list of enctypes we generate by default when creating kerberos keys.


Simo, can you please help with this one?

During processing of remaining tickets in 4.2 Backlog, this ticket was found as suitable to be fixed in the nearest bugfixing branch - which is 4.2.x.

FreeIPA 4.2.1 was released, moving to 4.2.x.

master:

  • 58ab032 Use only AES enctypes by default

ipa-4-3:

  • bad5b02 Use only AES enctypes by default

Metadata Update from @simo:
- Issue assigned to simo
- Issue set to the milestone: FreeIPA 4.3.1

2 years ago

Login to comment on this ticket.

Metadata