Navigation: Linux Kernel Driver DataBase - web LKDDB: Main index - S index

CONFIG_SUNRPC_DISABLE_INSECURE_ENCTYPES: Secure RPC: Disable insecure Kerberos encryption types

General informations

The Linux kernel configuration item CONFIG_SUNRPC_DISABLE_INSECURE_ENCTYPES:

prompt: Secure RPC: Disable insecure Kerberos encryption types
type: bool
depends on: CONFIG_RPCSEC_GSS_KRB5
defined in net/sunrpc/Kconfig
found in Linux kernels: 5.3–5.19, 6.0–6.2, 6.2+HEAD

Help text

Choose Y here to disable the use of deprecated encryption types with the Kerberos version 5 GSS-API mechanism (RFC 1964). The deprecated encryption types include DES-CBC-MD5, DES-CBC-CRC, and DES-CBC-MD4. These types were deprecated by RFC 6649 because they were found to be insecure.

N is the default because many sites have deployed KDCs and keytabs that contain only these deprecated encryption types. Choosing Y prevents the use of known-insecure encryption types but might result in compatibility problems.

Hardware

LKDDb

Raw data from LKDDb:

(none)

Sources

This page is automaticly generated with free (libre, open) software lkddb(see lkddb-sources).

The data is retrived from:

Linux kernel
Linux Kernel Driver DataBase (LKDDb)

Automatic links from Google (and ads)

Custom Search

Popular queries:

Navigation: Linux Kernel Driver DataBase - web LKDDB: main index - S index

Automatically generated (in year 2024). See also LKDDb sources on GitLab