7 automatically figure out if krb4 is installed
19 Implement RFC1731 and 1734, pop over GSS-API
23 should test more stuff
27 there's some room for improvement here.
31 should the KDC use keytabs to store its keys? Then it could use krb5_rd_req.
35 is in need of a major cleanup
41 prepend a prefix on all generated symbols
51 process_context_token, display_status, add_cred, inquire_cred_by_mech,
52 export_sec_context, import_sec_context, inquire_names_for_mech, and
53 inquire_mechs_for_name not implemented.
55 get_mic, wrap: always uses the remote_subkey
57 only DES MAC MD5 and DES implemented.
59 wrap and unwrap always uses DES for sealing even if conf is not
62 minor_status is never set
64 init_sec_context: `initiator_cred_handle' and `time_req' ignored.
66 input channel bindings are not supported
68 delegation not implemented
70 anonymous credentials not implemented
76 fix atomic rename of database
86 replay cache not implemented
88 the following encryption types have been implemented: DES-CBC-CRC,
89 DES-CBC-MD4, DES-CBC-MD5, DES3-CBC-MD5, DES3-CBC-SHA1
91 supports the following checksums: CRC32, RSA-MD4, RSA-MD5,
92 RSA-MD4-DES, RSA-MD5-DES, RSA-MD5-DES3, SHA1, HMAC-SHA1-DES3
94 always generates a new subkey in an authenticator
96 should the sequence numbers be XORed?
98 fix pre-authentication with pa-afs3-salt