Received: from malcolm.berkeley.edu (malcolm.Berkeley.EDU [128.32.206.239]) by krbdev.mit.edu (8.9.3p2) with ESMTP id TAA02688; Mon, 30 Oct 2006 19:49:02 -0500 (EST) Received: from malcolm.berkeley.edu (localhost [127.0.0.1]) by malcolm.berkeley.edu (8.13.8/8.13.3) with ESMTP id k9V0n0o0036218 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 30 Oct 2006 16:49:00 -0800 (PST) (envelope-from mikef@ack.berkeley.edu) Received: from localhost (mikef@localhost) by malcolm.berkeley.edu (8.13.8/8.13.3/Submit) with ESMTP id k9V0n0TM036215; Mon, 30 Oct 2006 16:49:00 -0800 (PST) (envelope-from mikef@ack.berkeley.edu) X-Authentication-Warning: malcolm.berkeley.edu: mikef owned process doing -bs Date: Mon, 30 Oct 2006 16:48:53 -0800 (PST) From: Mike Friedman X-X-Sender: mikef@malcolm.berkeley.edu To: Sam Hartman via RT Cc: karlgrose@berkeley.edu Subject: Re: [krbdev.mit.edu #4435] Fixed in 1.4.3 In-Reply-To: Message-Id: <20061030164343.C28857@malcolm.berkeley.edu> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0.2 (malcolm.berkeley.edu [127.0.0.1]); Mon, 30 Oct 2006 16:49:00 -0800 (PST) RT-Send-Cc: X-RT-Original-Encoding: us-ascii Content-Length: 1487 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 30 Oct 2006 at 17:46 (-0500), Sam Hartman via RT wrote: > I just looked at the changes between 1.4.2 and 1.4.3. The Vista Interop > problem you are seeing is fixed in MIT Kerberos 1.4.3. > > I suggest upgrading or applying the patches in MIT RT tickets 3207 and > 3205. Sam, I see a patch in ticket #3205: =========================================================================== In kdc_preauth.c:return_etype_info2() + /* using encrypting_key->enctype as this is specified in rfc4120 */ retval = _make_etype_info_entry(context, request, - client_key, client_key->key_data_type[0], + client_key, encrypting_key->enctype, =========================================================================== But I don't see any patch code in #3207. Is there just one patch? Thanks. Mike _________________________________________________________________________ Mike Friedman IST/System and Network Security mikef@ack.Berkeley.EDU 2484 Shattuck Avenue 1-510-642-1410 University of California at Berkeley http://socrates.berkeley.edu/~mikef http://security.berkeley.edu _________________________________________________________________________ -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 iQA/AwUBRUadea0bf1iNr4mCEQLT8wCguqtwITFrPXcaBKTeWs5F0Ecn9pwAn1ml cmy75Tq4zrzakt/ahqDisjYW =5vCq -----END PGP SIGNATURE-----