13 Implement RFC1731 and 1734, pop over GSS-API
17 should test more stuff
27 there's some room for improvement here.
31 should the KDC use keytabs to store its keys? Then it could use krb5_rd_req.
35 is in need of a major cleanup
41 prepend a prefix on all generated symbols
43 make asn1_compile use enum types where applicable
53 process_context_token, display_status, add_cred, inquire_cred_by_mech,
54 export_sec_context, import_sec_context, inquire_names_for_mech, and
55 inquire_mechs_for_name not implemented.
57 only DES MAC MD5 and DES implemented.
59 set minor_status in all functions
61 init_sec_context: `initiator_cred_handle' and `time_req' ignored.
63 input channel bindings are not supported
65 delegation not implemented
67 anonymous credentials not implemented
79 the replay cache is, in its current state, not very useful
81 the following encryption types have been implemented: DES-CBC-CRC,
82 DES-CBC-MD4, DES-CBC-MD5, DES3-CBC-MD5, DES3-CBC-SHA1
84 supports the following checksums: CRC32, RSA-MD4, RSA-MD5,
85 RSA-MD4-DES, RSA-MD5-DES, RSA-MD5-DES3, SHA1, HMAC-SHA1-DES3
87 always generates a new subkey in an authenticator
89 should the sequence numbers be XORed?
91 fix pre-authentication with pa-afs3-salt
93 fix send_to_kdc to handle machines with both v4 and v6 addresses
103 update everything to rfc2553 and implement fall-back functions for