CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_DES: Enable Kerberos enctypes based on DES (deprecated)

General informations

The Linux kernel configuration item CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_DES:

• prompt: Enable Kerberos enctypes based on DES (deprecated)
• type: bool
• depends on: ( CONFIG_RPCSEC_GSS_KRB5 ) && ( CONFIG_CRYPTO_CBC && CONFIG_CRYPTO_CTS && CONFIG_CRYPTO_ECB ) && ( CONFIG_CRYPTO_HMAC && CONFIG_CRYPTO_MD5 && CONFIG_CRYPTO_SHA1 ) && ( CONFIG_CRYPTO_DES )
• defined in net/sunrpc/Kconfig
• found in Linux kernels: 6.3–6.5

Help text

Choose Y to enable the use of deprecated Kerberos 5 encryption types that utilize Data Encryption Standard (DES) based ciphers. These include des-cbc-md5, des-cbc-crc, and des-cbc-md4, which were deprecated by RFC 6649, and des3-cbc-sha1, which was deprecated by RFC 8429.

These encryption types are known to be insecure, therefore the default setting of this option is N. Support for these encryption types is available only for compatibility with legacy NFS client and server implementations.

Removal of support is planned for a subsequent kernel release.

Hardware

LKDDb

Raw data from LKDDb:

• (none)

Sources

This page is automaticly generated with free (libre, open) software lkddb(see lkddb-sources).

The data is retrived from:

• Linux kernel
• Linux Kernel Driver DataBase (LKDDb)

Automatic links from Google (and ads)

Custom Search

Popular queries: