Jeffrey Altman

1. kdc/config.c reads the "[kdc] disable-des" option to decide whether or not ETYPE_DES_XXXX should be disabled. Perhaps "disable-des" should become an alias for "disable-deprecated" and the list of encryption types...

@nicowilliams and I are working on a new release but it is not ready yet.

> Last time Debian switched to the git version of Heimdal to get needed fixes, it upset people because we ended up making stable Debian releases from what was considered...

I have no access to that URL

> The CI tests appear to be broken. What is broken and on what distro/version? > This adds new symbols to the shared libraries, most notably kadm5_log_goto_first and kadm5_log_next. These...

appveyor is broken. the service cannot maintain a stable environment. It no longer can find the build dependencies and so it can no longer even get to the point of...

This is going to be tricky since we have to figure out how to install 32-bit dev packages and pass the 32-bit flags to the libedit configure script.

a DIR ccache is a collection of FILE ccaches. FILE ccaches must be owned by the uid of the process that is opening the ccache. The uid in the container...

There is no support for OpenSSL 3 at the present time.

I wonder if the test failures are due to ciphers and hash algorithms being disabled by default in OpenSSL 3.0 or perhaps removed entirely.