[27788] in Kerberos
Re: Kerberos enabled SSH library
daemon@ATHENA.MIT.EDU (Douglas E. Engert)
Fri May 18 10:02:43 2007
Message-ID: <464DB1F5.8060209@anl.gov>
Date: Fri, 18 May 2007 09:02:29 -0500
From: "Douglas E. Engert" <deengert@anl.gov>
MIME-Version: 1.0
To: petesea@bigfoot.com
In-Reply-To: <Pine.WNT.4.64.0705171337110.2424@oberon.home.org>
Cc: putty@projects.tartarus.org, kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
petesea@bigfoot.com wrote:
> Is there a Kerberos-enabled SSH library out there?
>
> I'm investigating the development of a custom SSH client that will only be
> for internal company use. The goal will be a single binary our users can
> easily download that will then be used to run specific commands to
> specific servers.
>
> I would PREFER it supports gssapi-keyex, but would probably settle for
> gssapi-with-mic.
>
You could look at PuTTY which is uses mostly on Windows, and is
used by a number of other package in the way you want. GSSAPI mods
are available:
http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/kerberos-gssapi.html
Look at the "Another patch here adds support for GSSAPI..." which only does
gssapi-with-mic.
Unfortunately, the PuTTY developers have not been convinced to add GSSAPI
support to the base package.
> I'm starting with Linux, but will eventually need to support Mac, Solaris,
> HP-UX and Windows clients.
>
The PuTTY says it will run on Unix.
> It seems like libssh2 might be a good choice, but it doesn't include
> gssapi auth (as far as I know). Any chance someone might be adding
> gssapi-with-mic/gssapi-keyex support to libssh2?
>
> I guess I could try to use OpenSSH, but it's not exactly intended as a
> "library"?
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
>
--
Douglas E. Engert <DEEngert@anl.gov>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
