Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

OpenSSH 4.2p1 GSSAPI problem

from [Inger, Slav (.)] Network Security [Permanent Link]
Subject: OpenSSH 4.2p1 GSSAPI problem
Date: Wed, 30 Nov 2005 12:12:29 -0500 
Hello,

Having a problem getting GSSAPI to work within latest OpenSSH 4.2p1 and
latest MIT Kerberos distribution.  Compiled and running under Debian
Linux.  MIT Kerberos utilities all check out, I can get TGTs just fine,
and can authenticate with rlogin and so forth.  But OpenSSH stubbornly
refuses to do single sign-on with the TGT present.  It drops through to
keyboard-interactive right past gssapi-with-mic mechanism, so it's
always prompting me for a password.  All GSSAPI and Kerberos options are
enabled in sshd_config.  I noticed that the SSH client (ssh) is getting
the TGS on my behalf and offering a GSSAPI stream, while the server
(sshd) is ignoring it.  sshd debug dumps don't show anything relevant.
But I traced ssh and sshd, and it's apparent that ssh is issuing gss_*()
calls while sshd isn't.  Any ideas?  TIA!
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • OpenSSH 4.2p1 GSSAPI problem, Inger, Slav (.) <=
Next by Date:  Bad transmission rate, Stefan Schulze Frielinghaus
Next by Thread:  Bad transmission rate, Stefan Schulze Frielinghaus
Indexes:  [Date] [Thread] [Top] [All Lists]