search for: mutual_req_flag

Displaying 3 results from an estimated 3 matches for "mutual_req_flag".

2017 Jan 16
2
Question on Kerberos (GSSAPI) auth
...interoperate with OpenSSH. I?ve gotten it working, but there seems to be a discrepancy between the OpenSSH implementation and RFC 4462. Specifically, RFC 4462 says the following in section 3.4: Since the user authentication process by its nature authenticates only the client, the setting of mutual_req_flag is not needed for this process. This flag SHOULD be set to "false". However, when I try to have my implementation not set this flag and just send a GSSAPI_TOKEN message immediately followed by a GSSAPI_MIC message without waiting for a server token (since the authentication is comple...
2017 Jan 17
2
Question on Kerberos (GSSAPI) auth
...H. I?ve gotten it working, but there seems to be a discrepancy between the OpenSSH implementation and RFC 4462. Specifically, RFC 4462 says the following in section 3.4: >> >> Since the user authentication process by its nature authenticates >> only the client, the setting of mutual_req_flag is not needed for >> this process. This flag SHOULD be set to "false". > > Note it says "SHOULD" not "MUST". Previous versions of SSH clients and mods to OpenSSH > have always set mutual_req_flag. [Ron] Thanks - I did see that, but shouldn't tha...
2004 Jan 22
11
Pending OpenSSH release: contains Kerberos/GSSAPI changes
(I hope this message is appropriate for these lists. If not, please tell me and I won't do it again.) Hi All. There will be a new release of OpenSSH in a couple of weeks. This release contains Kerberos and GSSAPI related changes that we would like to get some feedback about (and hopefully address any issues with) before the release. I encourage anyone with an interest in