Re: "allow_weak_crypto = true" not needed for wheezy

To: debian-edu@lists.debian.org
Subject: Re: "allow_weak_crypto = true" not needed for wheezy
From: "Andreas B. Mundt" <andi.mundt@web.de>
Date: Sun, 3 Feb 2013 18:50:38 +0100
Message-id: <[🔎] 20130203175038.GA18251@fuzi>
Mail-followup-to: debian-edu@lists.debian.org
In-reply-to: <[🔎] 2flfw1d1fa3.fsf@diskless.uio.no>
References: <[🔎] 20130202084835.GA3813@fuzi> <[🔎] 2flfw1d1fa3.fsf@diskless.uio.no>

Hi,

On Sun, Feb 03, 2013 at 06:24:52PM +0100, Petter Reinholdtsen wrote:
> [Andreas B. Mundt]
>
> > FYI, it looks as if "allow_weak_crypto = true" [1] is not needed
> > anymore for wheezy.  This is at least the case for debian-lan.
>
> What was it needed for in the first place?

Mounting NFSv4 IIRC. Cf. http://bugs.debian.org/657802
I remember debian-edu needed:

  permitted_enctypes = ...

too, because of pam_sss, which I never used.
(http://bugs.debian.org/657802#24)

>
> Do you have the commit rights needed to update the source with this
> change?

I would prefer if someone currently running and testing the code would
commit it, to make sure it really works in the end also on debian-edu.

Best regards,

     Andi

Reply to:

Follow-Ups:
- Re: "allow_weak_crypto = true" not needed for wheezy
  - From: "Wolfgang Schweer" <wschweer@gmx.de>

References:
- "allow_weak_crypto = true" not needed for wheezy
  - From: "Andreas B. Mundt" <andi.mundt@web.de>
- Re: "allow_weak_crypto = true" not needed for wheezy
  - From: Petter Reinholdtsen <pere@hungry.com>

Prev by Date: Re: broken squeeze-test download via rsync
Next by Date: Re: Point www.skolelinux.org to wiki.debian.org?
Previous by thread: Re: "allow_weak_crypto = true" not needed for wheezy
Next by thread: Re: "allow_weak_crypto = true" not needed for wheezy
Index(es):
- Date
- Thread