As a krb5 operator I want a tool to display the enabled and available crypto algorithms so I can confirm compliance with regulations

Description

This should be a run-time tool that might resemble "openssl ciphers". It could be used to demonstrate to regulators, auditor, etc. that weak algorithms are disabled or not compiled in. We probably want to display separate lists for compiled-in vs enabled (and different sorts of being enabled).

Status

Assignee

Unassigned

Reporter

Tom Yu

Labels

None

Priority

Normal