>>>>> "WF" == Wolfgang Friebel writes: >> Number: 1146 >> Category: krb5-clients >> Synopsis: string2key gets wrong salt with Heimdal KDC and converted AFS accounts >> Description: WF> A Kerberos4 database was converted with Heimdal tools to K5 and is WF> running with a Heimdal KDC Authentication with Heimdal Clients is WF> ok, authentication with MIT clients does not work for the AFS WF> salted entries. New entries and entries that got new enctypes WF> trough a password change do work. Debugging showed that in WF> string2key the salt->data string had a '@' character appended. By WF> removing the trailing character the MIT client works as well. Thanks for the report and the patch; it will appear in an upcoming release. ---Tom