From 4ecbd6db44d79348bc815f31096e53104f50838b Mon Sep 17 00:00:00 2001 From: markm Date: Sun, 9 Jan 2000 20:58:00 +0000 Subject: Import KTH Heimdal, which will be the core of our Kerberos5. Userland to follow. --- crypto/heimdal/TODO | 103 ++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 103 insertions(+) create mode 100644 crypto/heimdal/TODO (limited to 'crypto/heimdal/TODO') diff --git a/crypto/heimdal/TODO b/crypto/heimdal/TODO new file mode 100644 index 0000000..95d5caa --- /dev/null +++ b/crypto/heimdal/TODO @@ -0,0 +1,103 @@ +-*- indented-text -*- + +$Id: TODO,v 1.39 1999/12/05 01:08:19 assar Exp $ + +* configure + +use more careful checking before starting to use berkeley db. it only +makes sense to do so if we have the appropriate library and the header +file. + +* appl + +more programs here + +** appl/login + +/etc/environment etc. + +** appl/popper + +Implement RFC1731 and 1734, pop over GSS-API + +** appl/test + +should test more stuff + +** appl/rsh + +add rcp program + +** appl/ftp + +* doc + +there's some room for improvement here. + +* kdc + +* kadmin + +is in need of a major cleanup + +* lib + +** lib/asn1 + +prepend a prefix on all generated symbols + +make asn1_compile use enum types where applicable + +** lib/auth + +PAM + +** lib/des + +** lib/gssapi + +process_context_token, display_status, add_cred, inquire_cred_by_mech, +export_sec_context, import_sec_context, inquire_names_for_mech, and +inquire_mechs_for_name not implemented. + +only DES MAC MD5 and DES implemented. + +set minor_status in all functions + +init_sec_context: `initiator_cred_handle' and `time_req' ignored. + +input channel bindings are not supported + +delegation not implemented + +anonymous credentials not implemented + +** lib/hdb + +** lib/kadm5 + +add policies? + +fix to use rpc? + +** lib/krb5 + +the replay cache is, in its current state, not very useful + +the following encryption types have been implemented: DES-CBC-CRC, +DES-CBC-MD4, DES-CBC-MD5, DES3-CBC-MD5, DES3-CBC-SHA1 + +supports the following checksums: CRC32, RSA-MD4, RSA-MD5, +RSA-MD4-DES, RSA-MD5-DES, RSA-MD5-DES3, SHA1, HMAC-SHA1-DES3 + +always generates a new subkey in an authenticator + +should the sequence numbers be XORed? + +fix pre-authentication with pa-afs3-salt + +OTP? + +** lib/roken + +** lib/sl -- cgit v1.1