Curious about final KRB5/GSSAPI patch inclusion.
Austin Gonyou
austin at coremetrics.com
Wed May 22 05:12:50 EST 2002
Ahh...I will attempt that. That make sense. Thanks much for the hard
work.
On Tue, 2002-05-21 at 09:26, Simon Wilkinson wrote:
> On 18 May 2002, Austin Gonyou wrote:
>
> > Simon, or anyone else, If you're listening, can you let us know if
> there
> > will be a new patch set for 3.2.2p1 for gssapi or mit-kerberos
> pieces
> > like before.
>
> The MIT Kerberos pieces are now incorporated in the portable
> distribution. They only work (by design) with protocol version 1.
> The
> standard way of doing Kerberos with protocol version 2 is through
> the
> GSSAPI, which still requires patches. Patches for 3.2.2p1 should be
> available Real Soon Now.
>
> > As I stated in latest mail, krb5 auth works with passwords only as
> far
> > as I can tell right now. Ticket based auth does *not* seem to
> work. TIA.
>
> Are you establishing a version 1 connection - by default ssh uses v2
> if the peer supports it. Use the -1 option to ssh.
>
> Cheers,
>
> Simon.
--
Austin Gonyou
Systems Architect, CCNA
Coremetrics, Inc.
Phone: 512-698-7250
email: austin at coremetrics.com
"One ought never to turn one's back on a threatened danger and
try to run away from it. If you do that, you will double the danger.
But if you meet it promptly and without flinching, you will
reduce the danger by half."
Sir Winston Churchill
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: This is a digitally signed message part
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020521/540dbb33/attachment.bin
More information about the openssh-unix-dev
mailing list