Kerberos/GSS-API Support in OpenSSH

Contributed by jose on 2003-07-26 from the more-experimental-patches dept.

Vegas writes: " The GSS-API is a generic API for doing client-server authentication. It stands for Generic Security Services Application Programming Interface and its included with most major Kerberos 5 distributions. OpenSSH support of this API and kerberos makes it even more secure. To know more about it and to download package for openssh+gssapi, which is openssh-3.6.1p2 with version 20030430 of the GSS-API patches, click here ."

These patches look like they fix some bugs and add some features, which are worthy goals. Have a look at the patch and see if it can't be included in future OpenSSH codebases.

(Comments are closed)

Comments

By Vegas () vegas@box.sk on 2003-07-26 14:25 http://bsd.box.sk

Just to notice you about a new *BSD site: http://bsd.box.sk . This is where this news has been taken from and there is much more avaible there. The site is new (it only has a week) but it aim is to bring you all you need about not only OpenBSD, but all the BSD tree. Participate to our growing, you surely won't be disappointed after all. Vive BSD !!
Comments
1. By Anonymous Coward () on 2003-07-27 13:01
  
  In deadly we trust!
  Comments
  1. By Vegas () vegas@box.sk on 2003-07-27 11:12 http://bsd.box.sk
    
    So do i, but its only OpenBSD related, bsd.box.sk bring stuff from all the *BSD tree, including OpenBSD.
2. By viva w4rx0r? () on 2003-07-29 01:16
  
  At last, BSD news to complement the keygen search engine from astalavista.box.sk. That should really enhance *BSD credibility.
  Comments
  1. By Vegas () vegas@box.sk on 2003-07-29 11:55 http://bsd.box.sk
    
    It is the site of a bunch of motivated people wanting to help the community. We have nothing to do with astalavista and i don't even know who run it. You should not judge a site by it dns but by it contain, my guess..
By djm () on 2003-07-27 09:21

This has been brought up on this site at least three times. Each time we have stated that asking for the patch to be integrated is not going to speed things up. If people want to see this patch integrated, it needs to be audited and reduced in size.

A few developers have been doing just this, with *zero* outside assistance (for all the talking).
Comments
1. By jose () on 2003-07-27 12:00 http://monkey.org/~jose/
  
  hurr ... my bad, i should have investigated that a bit more, it did feel familiar. you're right, but then again, slashdot posts duplicates frequently :) ....
  
  sorry about that.

Latest Articles

Thu, Apr 18
- 05:05 Coming soon to a -current system near you: parallel raw IP input (0)
Wed, Apr 17
- 05:33 In -current, default write format for tar(1) changed to "pax" (7)
Wed, Apr 10
- 18:50 OpenSMTPD 7.5.0p0 Released (2)
Tue, Apr 09
- 04:49 20 years since "and we're just starting": undeadly.org turns 20 (2024-04-09) (13)
Fri, Apr 05
- 06:16 OpenBSD 7.5 released (2)
Thu, Mar 28
- 18:18 LibreSSL 3.8.4 and 3.9.1 released (0)
Tue, Mar 12
- 06:53 OpenSSH 9.7/9.7p1 released! (0)
Mon, Mar 11
- 11:28 Game of Trees 0.97 released (0)
Sun, Mar 10
- 09:06 LibreSSL versions 3.8.3 and 3.9.0 released (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]