* appl
-more programs here
-
-** appl/login
-
-/etc/environment etc.
-
** appl/popper
-Implement RFC1731 and 1734, pop over GSS-API
-
-** appl/test
-
-should test more stuff
-
-** appl/rsh
-
-add rcp program
-
-** appl/ftp
-
* doc
-there's some room for improvement here.
-
* kdc
-should the KDC use keytabs to store its keys? Then it could use krb5_rd_req.
-
* kadmin
-is in need of a major cleanup
+* kpasswdd
* lib
** lib/asn1
-prepend a prefix on all generated symbols
-
-make asn1_compile use enum types where applicable
-
** lib/auth
-PAM
+** lib/auth/sia
+
+** lib/com_err
** lib/des
** lib/gssapi
-process_context_token, display_status, add_cred, inquire_cred_by_mech,
-export_sec_context, import_sec_context, inquire_names_for_mech, and
-inquire_mechs_for_name not implemented.
-
-only DES MAC MD5 and DES implemented.
-
-set minor_status in all functions
-
-init_sec_context: `initiator_cred_handle' and `time_req' ignored.
-
-input channel bindings are not supported
-
-delegation not implemented
-
-anonymous credentials not implemented
+cache delegation credentials to avoid hitting the kdc ? require time
+stampless tickets, and was supported in the recv'ing end with 0.6.1.
** lib/hdb
** lib/krb5
-the replay cache is, in its current state, not very useful
-
-the following encryption types have been implemented: DES-CBC-CRC,
-DES-CBC-MD4, DES-CBC-MD5, DES3-CBC-MD5, DES3-CBC-SHA1
-
-supports the following checksums: CRC32, RSA-MD4, RSA-MD5,
-RSA-MD4-DES, RSA-MD5-DES, RSA-MD5-DES3, SHA1, HMAC-SHA1-DES3
-
-always generates a new subkey in an authenticator
-
-should the sequence numbers be XORed?
-
-fix pre-authentication with pa-afs3-salt
-
-fix send_to_kdc to handle machines with both v4 and v6 addresses
-
-OTP?
+verify_user: handle non-secure verification failing because of
+host->realm mapping
** lib/roken
-
-** lib/sl
-
-** socket stuff
-
-update everything to rfc2553 and implement fall-back functions for
-them in lib/roken