From: Tom Yu <tlyu@MIT.EDU>
Date: 01 Oct 1999 21:03:41 -0400
-----BEGIN PGP SIGNED MESSAGE-----
The MIT Kerberos Team is proud to announce the availability of MIT
Kerberos 5 Release 1.1. Major new features include:
* Triple DES support is included; however, it is only usable for
service keys at the moment, due to a large number of compatibility
issues. For example, the GSSAPI library has some (buggy) support
for a triple DES session key, but it is intentionally disabled.
* The principal database now uses the btree backend of Berkeley DB.
This should result in improved KDC performance.
* The build system has been redesigned somewhat; there are now
no longer configure scripts for each individual directory.
* As part of the build system redesign, shared library builds are
under a new framework; at this point only Solaris (2.x), Irix (6.5),
NetBSD (1.4 i386), and possibly Linux are known to work. All other
working shared library builds may be figments of your
* Mac and Windows builds should work better than they did in
the 1.0 releases.
LAST MINUTE NOTICES
These last minute notes are not in the documentation for the release.
* Syslog-based logging has a possible denial-of-service bug, which
will be fixed in an upcoming release. For now, do *NOT* use
syslog-based logging for the KDC or kadmind. File-based logging
will still work, and is not vulnerable to the denial-of-service
RETRIEVING KERBEROS 5 RELEASE 1.1
You may retrieve the Kerberos 5 Release 1.1 source from the following
Further information about Kerberos 5 may be found at the following
MIT Information Systems
Kerberos Development Team
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----