Date: Wed, 18 Jan 2023 23:46:37 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 268186] Kerberos authentication fails with a Linux/FreeIPA KDC Message-ID: <bug-268186-227-cWtkqmGBEg@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-268186-227@https.bugs.freebsd.org/bugzilla/> References: <bug-268186-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268186 --- Comment #62 from Cy Schubert <cy@FreeBSD.org> --- (In reply to amendlik from comment #60) The port flags itself as broken when the gssapi option is selected, stating that the patch is not available. Applying the patch for 8.9 will fail. Reworking the 8.9 patch is pointless because the code has changed significantly enough to require rewriting the patch. This is probably why Debian hasn't produced a patch yet, and IMO may never will. The port's Makefile has a comment that KERB_GSSAPI requires the GSSAPI patc= h, which has now been implemented by OpenBSD in OpenSSH. One needs to test Ope= nSSH without the KERB_GSSAPI patch. BTW, the MIT and HEIMDAL options are independent of the KERB_GSSAPI option.= I don't know why KERB_GSSAPI is required when building the gssapi flavor when= one can build opehssh-portable with just the MIT option without the KERB_GSSAPI option. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-268186-227-cWtkqmGBEg>