[28503] in Kerberos

home help back first fref pref prev next nref lref last post

Re: GSSAPI Key Exchange Patch for OpenSSH 4.7p1

daemon@ATHENA.MIT.EDU (Roumen Petrov)
Fri Sep 28 17:06:04 2007

Message-ID: <46FD5D98.5090308@roumenpetrov.info>
Date: Fri, 28 Sep 2007 23:01:28 +0300
From: Roumen Petrov <openssh@roumenpetrov.info>
MIME-Version: 1.0
To: openssh-unix-dev@mindrot.org
In-Reply-To: <0DC5C238-7F48-41F5-A0DB-DEF62E0698D8@inf.ed.ac.uk>
Cc: Simon Wilkinson <sxw@inf.ed.ac.uk>, heimdal-discuss@sics.se,
   kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Simon Wilkinson wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi,
>
> I'm pleased to (finally) announce the availability of my GSSAPI Key  
> Exchange patch for OpenSSH 4.7p1. Whilst OpenSSH contains support for  
> doing GSSAPI user authentication, this only allows the underlying  
> security mechanism to authenticate the user to the server, and  
> continues to use SSH host keys to authenticate the server to the  
> user. 
O-o-o-ops , I'm not familiar with GSS-API but partially support is not a 
option for an open-source product.

[SNIP]

Roumen


-- 
Get X.509 certificates support in OpenSSH:
http://roumenpetrov.info/openssh/

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post