Kerberos 5 Release 1.11.6

Kerberos 5 Release 1.11.6 is now available

The MIT Kerberos Team announces the availability of the krb5-1.11.6 release. The detached PGP signature is available without going through the download page, if you wish to verify the authenticity of a distribution you have obtained elsewhere.

Please see the README file for a more complete list of changes.

You may also see the current full list of fixed bugs tracked in our RT bugtracking system.

DES transition

The Data Encryption Standard (DES) is widely recognized as weak. The krb5-1.7 release contains measures to encourage sites to migrate away from using single-DES cryptosystems. Among these is a configuration variable that enables "weak" enctypes, which now defaults to "false" beginning with krb5-1.8.

Major changes in 1.11.6 (2015-02-24)

This is a bugfix release. The krb5-1.11 release series has reached the end of its maintenance period, and krb5-1.11.6 is the last planned release in the krb5-1.11 series. For new deployments, installers should prefer the krb5-1.13 release series or later.

Major changes in 1.11.5 (2014-01-21)

Major changes in 1.11.4 (2013-11-04)

Major changes in 1.11.3 (2013-06-03)

Major changes in 1.11.2 (2013-04-11)

Major changes in 1.11.1 (2013-02-21)

Major changes in 1.11 (2012-12-17)

Code quality:
Developer experience:
Administrator experience:
End-user experience:
Protocol evolution:

Retrieving Kerberos 5 Release 1.11.6

You may retrieve the Kerberos 5 Release 1.11.6 source from here. If you need to acquire the sources from some other distribution site, you may verify them against the detached PGP signature for krb5-1.11.6.

$Id: krb5-1.11.6.html,v 1.1 2015/02/25 23:23:04 tlyu Exp $
MIT Kerberos [ home ] [ contact ]