Please test: Kerberos v5 support in portable
Kerry Thompson
kerry at crypt.gen.nz
Fri Apr 19 11:53:32 EST 2002
Damien Miller writes:
>
> Could KerberosV users (both MIT and Heimdal) please test CVS -current and
> report back on this?
>
I've just finished testing CVS-current against MIT krb5 1.2.3 (
current internationally available version of MIT krb5 ) on RedHat
7.2. It works well with both plain and ticket-forwarded
authentication.
gcc threw some warnings which didn't seem to affect the functionality:
sshconnect1.c: In function `try_krb5_authentication':
sshconnect1.c:566: warning: passing arg 5 of `krb5_mk_req' discards qualifiers from pointer target type
sshconnect1.c: In function `send_krb5_tgt':
sshconnect1.c:693: warning: passing arg 3 of `krb5_fwd_tgt_creds' discards qualifiers from pointer target type
Config details :
OpenSSH has been configured with the following options:
User binaries: /usr/local/bin
System binaries: /usr/local/sbin
Configuration files: /usr/local/etc
Askpass program: /usr/local/libexec/ssh-askpass
Manual pages: /usr/local/man/manX
PID file: /var/run
sshd default user PATH: /usr/bin:/bin:/usr/sbin:/sbin:/usr/local/bin
Manpage format: doc
PAM support: no
KerberosIV support: no
KerberosV support: yes
Smartcard support: no
AFS support: no
S/KEY support: no
TCP Wrappers support: no
MD5 password support: no
IP address in $DISPLAY hack: no
Use IPv4 by default hack: no
Translate v4 in v6 hack: yes
BSD Auth support: no
Random number source: OpenSSL internal ONLY
Host: i686-pc-linux-gnu
Compiler: gcc
Compiler flags: -g -O2 -Wall -Wpointer-arith -Wno-uninitialized
Preprocessor flags: -I/opt/kerberos/current/src/include
Linker flags: -L/opt/kerberos/current/src/lib
Libraries: -lresolv -lutil -lz -lnsl -lcrypto -lcrypt -lkrb5 -lk5crypto -lcom_err
Nice work, Simon.
Kerry
--
Kerry Thompson CISSP
Information Systems Security Consultant
kerry at crypt.gen.nz
http://www.crypt.gen.nz
More information about the openssh-unix-dev
mailing list