Auto-detecting broken arcfour-hmac code

Love lha at
Tue Sep 2 14:08:59 GMT 2003

Jim McDonough <jmcd at> writes:

> Anyone have any ideas about detecting whether the arcfour-hmac code is
> broken, as before last week or so when the fix was put in the snapshot?
> Samba needs to know and not use it if it's broken, but I'd like to use it
> when possible and not just generally disable it.  THere are a lot of 0.4e
> installs out there...

I would guess that everything older then yet-to-be-released 0.7 is broken.

If you can find a enum KEYTYPE_ARCFOUR_56 in krb5.h, heimdal is probably ok.

I've been thinking about adding a version number to krb5.h


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 477 bytes
Desc: not available
Url :

More information about the samba-technical mailing list