To: kerberos-announce@MIT.EDU Cc: kerberos@MIT.EDU From: Tom Yu <tlyu@MIT.EDU> Date: 01 Oct 1999 21:03:41 -0400 Message-Id: <ldvpuyytvyq.fsf@saint-elmos-fire.mit.edu> -----BEGIN PGP SIGNED MESSAGE----- The MIT Kerberos Team is proud to announce the availability of MIT Kerberos 5 Release 1.1. Major new features include: * Triple DES support is included; however, it is only usable for service keys at the moment, due to a large number of compatibility issues. For example, the GSSAPI library has some (buggy) support for a triple DES session key, but it is intentionally disabled. * The principal database now uses the btree backend of Berkeley DB. This should result in improved KDC performance. * The build system has been redesigned somewhat; there are now no longer configure scripts for each individual directory. * As part of the build system redesign, shared library builds are under a new framework; at this point only Solaris (2.x), Irix (6.5), NetBSD (1.4 i386), and possibly Linux are known to work. All other working shared library builds may be figments of your imagination. * Mac and Windows builds should work better than they did in the 1.0 releases. LAST MINUTE NOTICES =================== These last minute notes are not in the documentation for the release. * Syslog-based logging has a possible denial-of-service bug, which will be fixed in an upcoming release. For now, do *NOT* use syslog-based logging for the KDC or kadmind. File-based logging will still work, and is not vulnerable to the denial-of-service attack. RETRIEVING KERBEROS 5 RELEASE 1.1 ================================= You may retrieve the Kerberos 5 Release 1.1 source from the following URL: http://web.mit.edu/network/kerberos-form.html Further information about Kerberos 5 may be found at the following URL: http://web.mit.edu/kerberos/www/index.html ========================= Tom Yu MIT Information Systems Kerberos Development Team -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBN/VWoabDgE/zdoE9AQFYPQP/asxmkBOlQG9aiCibqD04V56UWjvG7oeQ WNmDFMK+BC07wL7NEtJNwsXQe+yvHYCYtvFDFCf5ShIq9LkelqvAAbpnk+qcaGZp FAsa9Csf3xcTaOzbOykop348SiPY9st15axu1BrfDmuyp22u4UoBf1QF1UGi7KbB GWVzl+J1Bpk= =OcCi -----END PGP SIGNATURE-----