Displaying 20 results from an estimated 90000 matches similar to: "[Bug 488] Patch for kerberos in clusters"
2003 Feb 06
0
[Bug 488] New: Patch for kerberos in clusters
http://bugzilla.mindrot.org/show_bug.cgi?id=488
Summary: Patch for kerberos in clusters
Product: Portable OpenSSH
Version: 3.5p1
Platform: All
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: ssh
AssignedTo: openssh-unix-dev at mindrot.org
ReportedBy: smoogen at
2005 Jul 06
0
[Bug 488] Patch for kerberos in clusters
http://bugzilla.mindrot.org/show_bug.cgi?id=488
simon at sxw.org.uk changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |WONTFIX
------- Additional Comments From simon at sxw.org.uk 2005-07-07
2003 Feb 06
3
[Bug 487] Patches to fix ssh1 kerberos handling and some other items
http://bugzilla.mindrot.org/show_bug.cgi?id=487
------- Additional Comments From smoogen at lanl.gov 2003-02-07 09:36 -------
Created an attachment (id=220)
--> (http://bugzilla.mindrot.org/attachment.cgi?id=220&action=view)
Patch for ssh_config man page
Should change some wording.
Written by Dave Williams
------- You are receiving this mail because: -------
You are the assignee
2004 Sep 14
2
GSSAPI, Kerberos and multihomed hosts
(was: "Re: Pending OpenSSH release, call for testing", topic drift at
its finest :-)
Markus Moeller wrote:
> Douglas,
>
> OK three possible settings(hostname,connection IP,GSS_C_NO_NAME) are fine for me too.
Does GSS_C_NO_NAME relate to this bug (addressless tickets)?
http://bugzilla.mindrot.org/show_bug.cgi?id=488
BTW, I opened a bug the the multihomed thing a couple of
2002 Oct 04
1
Confirming kerberos for upcoming OpenSSH portable release.
O.K. I know it was too late to make changes for the next release, but
thankfully there werent any changes needed. Kerberos over ssh protocol 1
worked out of the box from CVS today (2002/10/04-14:30)
The krb5 patches we were using (I think from Olaf K) was all in the
code. The only thing I had to patch to get things working was removing
the scard-install from the Makefile.in
The compiled code
2003 Feb 06
0
[Bug 487] New: Patches to fix ssh1 kerberos handling and some other items
http://bugzilla.mindrot.org/show_bug.cgi?id=487
Summary: Patches to fix ssh1 kerberos handling and some other
items
Product: Portable OpenSSH
Version: 3.5p1
Platform: All
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: ssh
AssignedTo: openssh-unix-dev at
2003 May 16
0
[Bug 488] Patch for kerberos in clusters
http://bugzilla.mindrot.org/show_bug.cgi?id=488
djm at mindrot.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Component|ssh |Kerberos support
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
1999 Sep 21
0
FW: Kerberos 5 with Samba, Can you help?
fyi.
------------------------------------------------------------
Nathan Neulinger EMail: nneul@umr.edu
University of Missouri - Rolla Phone: (573) 341-4841
Computing Services Fax: (573) 341-4216
-----Original Message-----
From: Richard Kandarian [mailto:richard.kandarian@lanl.gov]
Sent: Monday, September 20, 1999 2:11 PM
To: Nathan
2015 Aug 19
2
Samba 4 DC - no AES kerberos tickets - only arcfour
Hi Trever,
things improved after resetting user/machine passwords, however only the session key is using aes256 now, the ticket itself is still arcfour:
root at ubuntu1:~# kinit user09999
user09999 at S4DOM.TEST's Password:
root at ubuntu1:~# klist -v
Credentials cache: FILE:/tmp/krb5cc_0
Principal: user09999 at S4DOM.TEST
Cache version: 4
Server: krbtgt/S4DOM.TEST at
2015 Aug 19
0
Samba 4 DC - no AES kerberos tickets - only arcfour
On 08/19/2015 12:02 AM, Ritter, Marcel (RRZE) wrote:
> Hi Trever,
>
> things improved after resetting user/machine passwords, however only the session key is using aes256 now, the ticket itself is still arcfour:
>
> root at ubuntu1:~# kinit user09999
> user09999 at S4DOM.TEST's Password:
> root at ubuntu1:~# klist -v
> Credentials cache: FILE:/tmp/krb5cc_0
>
2004 Feb 26
0
krb5-1.3.2 is released (fwd)
Just a quick heads up, I'm currently working on this. It's building on
-CURRENT. Yet to be done, testing on -CURRENT, build & test on -STABLE, and
verification of pkg-plist currency. I will post patches to the krb5 port to
-security and -ports and assuming I don't get negative feedback, I will
commit sometime late Saturday or on Sunday when I return from my trip
Vancouver.
As
2003 Jun 27
3
Kerberos Support in OpenSSH
Dear Sir and Madam:
I'm writing to you on behalf of the MIT Kerberos team and several
other parties interested in the availability of Kerberos
authentication for the SSH protocol.
We recently noticed that the OpenSSH developers had added support for
the kerberos-2 at ssh.com user authentication mechanism. We are
delighted but we believe additional steps are necessary, as explained
2003 Oct 02
1
pam_krb5 errors on OpenSSH3.6.1p2
A few weeks ago, we upgraded our Red Hat 7.3 and 9 machines to OpenSSH
3.6.1p2 w/ the corresponding version of Simon's GSSAPI patch.
All the expected functionality seems to be there: I can ssh/scp/sftp via
Kerberos tickets or local password. However, I seem to be getting a new
error message in my logs:
For Red Hat 7.3:
Message from syslogd at gallifrey at Thu Oct 2 17:24:12 2003 ...
2016 Mar 22
3
Automatically forwarding fresh Kerberos tickets?
In an environment where users use smart cards to authenticate on Windows and then use ssh to login to UNIX systems via GSSAPI, it is nigh impossible to renew/refresh the Kerberos credentials in the UNIX session. If the user fails to renew their credentials before they expire, the user is stuck and must log out and log back in to get valid tickets.
Meanwhile it is entirely likely that on the
2015 Aug 18
2
Samba 4 DC - no AES kerberos tickets - only arcfour
Hi,
I’ve been running a samba 4 DC for quite some time now, and while testing some kerberos related stuff, I noticed that all kerberos tickets I can get from the DC are of encryption type ?arcfour-hmac-md5“:
# kinit testuser1
testuser1 at S4DOM.TEST's Password:
# klist -v
Credentials cache: FILE:/tmp/krb5cc_0
Ticket etype: arcfour-hmac-md5, kvno 1
I can create keytabs containing
2000 Jun 28
1
F-secure -> Openssh Compatibility (fwd)
Date: Tue, 27 Jun 2000 16:09:43 -0600 (MDT)
From: "W. Scott Wilburn" <wilburn at lanl.gov>
To: ssh at clinet.fi
Subject: F-secure -> Openssh Compatibility
We have Macintoshes running Fsecure SSH client 1.0.1 which are unable to
connect to a server running Openssh 2.1.1 on Red Hat 6.2.
I believe that the problem is a bug with Fsecure, since a 30-day trial
version of 1.0.2 works
2004 Mar 04
4
SSH + Kerberos Password auth
Hello,
I have a question about SSH with Kerberos password authentication .
Do I receive any host ticket to my client machine when I do ssh connection
with Kerberos password authenticaiton? If dont, why?
If I login to remote machine through telnet with Kerberos Password
authentication [through PAM-kerberos], then I can see the tickets with
klist. But with the same setup for sshd, I cannot see
2001 Nov 16
0
[PATCH] Re: Kerberos support for portable
Thanks, Simon for the MIT Kerberos5 patches.
FWIW, here are further patches which allow openssh-3.0p1 to work
with paleo-MIT Kerberos5 1.0.6, more or less (more with tickets
and less with the auth_krb5_password {get,verify}_init_creds stuff).
BTW, the patches I pulled out of the archive seemed to have some
line wrapping problems; I had to apply several chunks by hand.
I'm therefore including
2018 Dec 19
2
RFE: OpenSSH Support for PKCS11 Funneling to PAM for Kerberos/PKINIT
Alon,
On 12/18/2018 06:52 PM, Alon Bar-Lev wrote:
> OK... So you have an issue...
>
> First, you need to delegate your smartcard to remote machine, probably
> using unix socket redirection managed by openssh. This can be done in
> many levels...
> 1. Delegate USB device, this will enable only exclusive usage of the
> smartcard by remote machine.
> 2. Delegate PC/SC, this
2013 Mar 07
5
[Bug 928] Kerberos/GSSAPI authentication does not work with multihomed hosts
https://bugzilla.mindrot.org/show_bug.cgi?id=928
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2076
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching someone on the CC