7 use more careful checking before starting to use berkeley db. it only
8 makes sense to do so if we have the appropriate library and the header
15 Implement RFC1731 and 1734, pop over GSS-API
23 preferably use keys with default salt for v5 requests
27 is in need of a major cleanup
33 prepend a prefix on all generated symbols
41 make everything work with openssl
45 process_context_token, display_status, add_cred, inquire_cred_by_mech,
46 export_sec_context, import_sec_context, inquire_names_for_mech, and
47 inquire_mechs_for_name not implemented.
49 only DES MAC MD5 and DES implemented.
51 set minor_status in all functions
53 init_sec_context: `initiator_cred_handle' and `time_req' ignored.
55 anonymous credentials not implemented
67 rewrite the lookup of KDCs to handle kerberos-<n> and not do any DNS
68 requests if the information can be found locally. this requires stop
69 using krb5_get_krbhst.
71 the replay cache is, in its current state, not very useful
73 always generates a new subkey in an authenticator
75 should the sequence numbers be XORed?
79 make checksum/encryption type configuration more realm-specific. make
80 some simple way of handling the w2k situtation