I try to understand the gss_wrap with Kerberos authentication and rc4-hamc
encryption. It seems that the token size is plain text size + 56 (32 bytes
from RFC 4121 and 24 bytes from RFC 4757), but the actual size from network
trace is plain text size + 60. Anyone know which size is correct? And where
the extra 4 bytes come from?
Thanks a lot for your help.