freebsd-skq/crypto
nectar 0e7f0df834 Bug fix: When the client connects to a server and Kerberos
authentication is  enabled, the  client effectively ignores  any error
from krb5_rd_rep due to a missing branch.

In  theory  this could  result  in  an  ssh  client using  Kerberos  5
authentication accepting  a spoofed  AP-REP.  I doubt  this is  a real
possiblity, however, because  the AP-REP is passed from  the server to
the client via the SSH  encrypted channel.  Any tampering should cause
the decryption or MAC to fail.

Approved by:	green
MFC after:	1 week
2001-07-13 18:12:13 +00:00
..
heimdal fix merges from 0.3f 2001-06-21 02:21:57 +00:00
kerberosIV merge imported changes into HEAD 2001-05-11 00:14:02 +00:00
openssh Bug fix: When the client connects to a server and Kerberos 2001-07-13 18:12:13 +00:00
openssl Resolve conflicts 2001-05-20 03:17:35 +00:00
telnet mdoc(7) police: removed HISTORY info from the .Os call. 2001-07-10 10:42:19 +00:00
README Note that crypto/ is not used to build in, people should see secure/ 2001-02-10 04:47:47 +00:00

$FreeBSD$

This directory is for the EXACT same use as src/contrib, except it
holds crypto sources.  In other words, this holds raw sources obtained
from various third party vendors, with FreeBSD patches applied.  No
compilation is done from this directory, it is all done from the
src/secure directory.  The separation between src/contrib and src/crypto
is the result of an old USA law, which made these sources export
controlled, so they had to be kept separate.