git.michaelhowe.org Git - packages/o/openafs.git/commit

author	Benjamin Kaduk <kaduk@mit.edu>
	Mon, 31 Jul 2017 01:57:05 +0000 (20:57 -0500)
committer	Benjamin Kaduk <kaduk@mit.edu>
	Sat, 5 Aug 2017 22:47:04 +0000 (18:47 -0400)
commit	6d59b7c4b4b712160a6d60491c95c111bb831fbb
tree	aa70ce962985438c263fae40e7a0bef1df8c34aa	tree \| snapshot
parent	f7ccf0aa00459cda4579a3838b5bd59ba69c03ea	commit \| diff

Default to crypt mode for unix clients

Though the protection offered by rxkad, even with rxkad-k5 and rxkad-kdf, is
insufficient to protect traffic from a determined attacker, it remains the
case that the internet is not a safe place for user data to travel in the
clear, and has not been for a long time. The Windows client encrypts by
default, and all or nearly all the Unix client packaging scripts set crypt
mode by default. Catch up to reality and default to crypt mode in the
Unix cache manager.

Change-Id: If0061ddca3bedf0df1ade8cb61ccb710ec1181d4
Reviewed-on: https://gerrit.openafs.org/12668
Reviewed-by: Benjamin Kaduk <kaduk@mit.edu>
Tested-by: BuildBot <buildbot@rampaginggeek.com>

NEWS		diff \| blob \| history
src/afs/afs_conn.c		diff \| blob \| history