[Pkg-gnutls-maint] Bug#447778: libgnutls13: Add the Kerberos cipher suite to TLS

Simon Josefsson simon at josefsson.org
Tue Nov 13 23:38:03 UTC 2007


RFC 2712 is broken, since it doesn't provide mutual authentication,  
and as far as I know, the Kerberos community doesn't recommend it.   
Are you sure you want to use RFC 2712?

There are discussions in the IETF to support GSS-API in TLS, which is  
the proper way to solve this, but there isn't any consensus in the  
TLS WG.  Possibly one of the draft will be implemented by Microsoft,  
and GnuTLS could implement it, but someone needs to do the job (or  
pay someone to do it).

/Simon






More information about the Pkg-gnutls-maint mailing list