Displaying 1 result from an estimated 1 matches for "desired_name".
2004 Sep 13
4
Pending OpenSSH release, call for testing.
...as multiple names, a possible change is to
>pass GSS_C_NO_NAME rather then ctx->name to gss_acquire_cred. This then
>leaves it upto the GSS to determine the acceptable names. In the Kerberos
>case this would be any principal name that is in the keytab.
>
> RFC2743 says:
> o desired_name INTERNAL NAME, -- NULL requests locally-determined
> -- default
>
>If you add this change, it should be a configuration option, as
>the Kerberos replay cache may not be used, and there might be other
>principals in the keytab that are not expected to be used by sshd.
>
>The...