Displaying 20 results from an estimated 6000 matches similar to: "[Bug 1008] GSSAPI authentication failes with Round Robin DNS hosts"
2006 Aug 18
2
[Bug 1008] GSSAPI authentication failes with Round Robin DNS hosts
http://bugzilla.mindrot.org/show_bug.cgi?id=1008
simon at sxw.org.uk changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |simon at sxw.org.uk
------- Comment #5 from simon at sxw.org.uk 2006-08-19 08:28 -------
There isn't an easy fix for this, at
2005 Aug 26
3
[Bug 1066] off-by-one error with GSSAPI names
http://bugzilla.mindrot.org/show_bug.cgi?id=1066
Summary: off-by-one error with GSSAPI names
Product: Portable OpenSSH
Version: 4.1p1
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: ssh
AssignedTo: bitbucket at mindrot.org
ReportedBy: dleonard at
2007 Sep 15
0
[Bug 1008] GSSAPI authentication failes with Round Robin DNS hosts
http://bugzilla.mindrot.org/show_bug.cgi?id=1008
--- Comment #9 from Simon Wilkinson <simon at sxw.org.uk> 2007-09-15 20:59:25 ---
I've noted this on the mailing list too, but just for the record,
the simplified patch is incorrect. GSSAPI != Kerberos, and even
within the Kerberos space, some vendors ship with
canonicalisation disabled.
If we are going to ship a workaround for
2005 Mar 31
2
[Bug 1008] GSSAPI authentication failes with Round Robin DNS hosts
http://bugzilla.mindrot.org/show_bug.cgi?id=1008
Summary: GSSAPI authentication failes with Round Robin DNS hosts
Product: Portable OpenSSH
Version: -current
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: Kerberos support
AssignedTo: openssh-bugs at mindrot.org
2006 Oct 23
1
[Bug 1008] GSSAPI authentication failes with Round Robin DNS hosts
http://bugzilla.mindrot.org/show_bug.cgi?id=1008
------- Comment #7 from jan.iven at cern.ch 2006-10-24 02:17 -------
Created an attachment (id=1202)
--> (http://bugzilla.mindrot.org/attachment.cgi?id=1202&action=view)
(simplified patch - no config option)
Given that the GSSAPI library will (unconditionally) use DNS anyway,
perhaps we don't need yet another client-side config
2016 Aug 17
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
--- Comment #16 from kgizdov <mindrot at kge.pw> ---
Apparently, some good Samaritan already made patches compatible with
the current version of OpenSSH. There is a package on the Arch User
Repo (openssh-gssapi 7.1p2-1) that implements them. Here are the
patches themselves:
2016 Aug 07
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
Colin Watson <cjwatson at debian.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |cjwatson at debian.org
--- Comment #15 from Colin Watson <cjwatson at debian.org> ---
I think it would make
2016 Aug 19
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
--- Comment #17 from Darren Tucker <dtucker at zip.com.au> ---
(In reply to kgizdov from comment #16)
> I hope this helps.
Not really. Those have a lot of other changes (mostly the GSSAPI key
exchange support) and it still uses get_canonical_hostname() which is
currently not available in the client.
According to Damien reasoning
2023 Oct 14
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
--- Comment #20 from Christoph Anton Mitterer <calestyo at scientia.org> ---
I think this was answered last year in this thread:
https://lists.mindrot.org/pipermail/openssh-unix-dev/2022-May/040285.html
and unfortunately it seems there won't be any merging of the GSSAPI
patch. :-(
There's:
2013 May 22
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
DarioP <pellegrini.dario at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |pellegrini.dario at gmail.com
--- Comment #11 from DarioP <pellegrini.dario at gmail.com> ---
(In reply to
2016 Jul 15
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
kgizdov <mindrot at kge.pw> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |mindrot at kge.pw
--- Comment #12 from kgizdov <mindrot at kge.pw> ---
I just wanted to chime in here to say that
2016 Jul 18
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
Darren Tucker <dtucker at zip.com.au> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |dtucker at zip.com.au
--- Comment #13 from Darren Tucker <dtucker at zip.com.au> ---
well it was never
2016 Aug 04
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
--- Comment #14 from Mike Frysinger <vapier at gentoo.org> ---
(In reply to Darren Tucker from comment #13)
the original patch written in 2006 was against openbsd cvs, and it
included a config option to turn it on/off (with the default being
off). it largely applied cleanly up through 7.2 until the
get_canonical_hostname refactor.
since
2016 Nov 08
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
Eitan Adler <lists at eitanadler.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |lists at eitanadler.com
--
You are receiving this mail because:
You are the assignee for the bug.
You are
2023 Oct 14
0
[Bug 1008] GSSAPI authentication fails with Round Robin DNS hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
Oliver Freyermuth <o.freyermuth at googlemail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |o.freyermuth at googlemail.com
--- Comment #19 from Oliver Freyermuth <o.freyermuth at
2005 Oct 10
0
[Bug 1100] GSSAPI-with-mic doesn't handle empty usernames
http://bugzilla.mindrot.org/show_bug.cgi?id=1100
Summary: GSSAPI-with-mic doesn't handle empty usernames
Product: Portable OpenSSH
Version: 4.2p1
Platform: Other
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: sshd
AssignedTo: bitbucket at mindrot.org
ReportedBy:
2005 Jan 05
3
[Bug 969] early setpcred() stomps on PAM
http://bugzilla.mindrot.org/show_bug.cgi?id=969
Summary: early setpcred() stomps on PAM
Product: Portable OpenSSH
Version: 3.9p1
Platform: All
OS/Version: AIX
Status: NEW
Severity: normal
Priority: P2
Component: sshd
AssignedTo: openssh-bugs at mindrot.org
ReportedBy: dleonard at
2005 Dec 16
4
[Bug 1133] configure.ac sets wrong BROKEN_ var (snprintf/vsnprintf)
http://bugzilla.mindrot.org/show_bug.cgi?id=1133
Summary: configure.ac sets wrong BROKEN_ var (snprintf/vsnprintf)
Product: Portable OpenSSH
Version: -current
Platform: HPPA
OS/Version: HP-UX
Status: NEW
Severity: major
Priority: P2
Component: Build system
AssignedTo: bitbucket at mindrot.org
2006 Sep 14
3
[Bug 1228] kbd-int device for AIX authenticate
http://bugzilla.mindrot.org/show_bug.cgi?id=1228
Summary: kbd-int device for AIX authenticate
Product: Portable OpenSSH
Version: 4.3p2
Platform: Other
OS/Version: AIX
Status: NEW
Severity: enhancement
Priority: P2
Component: sshd
AssignedTo: bitbucket at mindrot.org
ReportedBy: dleonard at
2006 Oct 09
3
[Bug 1249] pam_open_session called with dropped privs
http://bugzilla.mindrot.org/show_bug.cgi?id=1249
Summary: pam_open_session called with dropped privs
Product: Portable OpenSSH
Version: 4.4p1
Platform: PPC
OS/Version: AIX
Status: NEW
Severity: normal
Priority: P2
Component: sshd
AssignedTo: bitbucket at mindrot.org
ReportedBy: dleonard at