From owner-freebsd-ports@FreeBSD.ORG Fri Aug 21 07:16:37 2009 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 68D1F1065691 for ; Fri, 21 Aug 2009 07:16:37 +0000 (UTC) (envelope-from john.marshall@riverwillow.com.au) Received: from mail1.riverwillow.net.au (mail1.riverwillow.net.au [203.58.93.36]) by mx1.freebsd.org (Postfix) with ESMTP id C17818FC55 for ; Fri, 21 Aug 2009 07:16:36 +0000 (UTC) Received: from rwpc12.mby.riverwillow.net.au (rwpc12.mby.riverwillow.net.au [172.25.24.168]) (authenticated bits=0) by mail1.riverwillow.net.au (8.14.3/8.14.3) with ESMTP id n7L71Q87039676 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Fri, 21 Aug 2009 17:01:27 +1000 (AEST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=riverwillow.com.au; s=m1001; t=1250838087; bh=B5Oymr7nLEmtyzud9wq6ruG7r1XxzIyYORoC0ZiRRXY=; h=Date:From:To:Subject:Message-ID:Mime-Version:Content-Type; b=aEh/Lumf01528L2GoPHe8Wia2TS2jZXBfiy8Yb7W97uMi45GQ7GckZgI55NSNf6Dp MYDFJkFgrNkxScdvG3tztWq2Hg3D5zA+RkWLYc2G5QLROeh3HiZWM0ep45b9sNfyt2 JMQ+9GMO00aNN0eeW0YAlW/H0X+JZ8KRc3LelNiQ= Received: from rwpc12.mby.riverwillow.net.au (localhost [127.0.0.1]) by rwpc12.mby.riverwillow.net.au (8.14.3/8.14.3) with ESMTP id n7L71QC0022712 for ; Fri, 21 Aug 2009 17:01:26 +1000 (AEST) (envelope-from john.marshall@riverwillow.com.au) Received: (from john@localhost) by rwpc12.mby.riverwillow.net.au (8.14.3/8.14.3/Submit) id n7L71QTl022711 for freebsd-ports@freebsd.org; Fri, 21 Aug 2009 17:01:26 +1000 (AEST) (envelope-from john) Date: Fri, 21 Aug 2009 17:01:26 +1000 From: John Marshall To: freebsd-ports@freebsd.org Message-ID: <20090821070126.GJ2675@rwpc12.mby.riverwillow.net.au> Mail-Followup-To: freebsd-ports@freebsd.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="n8BV0TfTmv8nl9Pc" Content-Disposition: inline User-Agent: Mutt/1.4.2.3i OpenPGP: id=A29A84A2; url=http://pki.riverwillow.net.au/pgp/johnmarshall.asc Subject: OpenSSH 5.2p1 with GSSAPI Authentication X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Aug 2009 07:16:37 -0000 --n8BV0TfTmv8nl9Pc Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Does *anybody* have this working? I've been using SSH with GSSAPI authentication for a couple of years but found it no longer worked with sshd on an FreeBSD 8.0-BETA. FreeBSD 8.0-BETA has OpenSSH 5.2p1 included in the base system. I have tried installing the OpenSSH 5.2p1 port (security/openssh-portable) on FreeBSD 7.2 servers and I can't get that to work either. sshd from the OpenSSH 5.1p1 included in the 7.n base system works fine. The only common denominator in all of my testing has been OpenSSH 5.2p1. The debug logging from sshd shows that the gssapi library returns an authentication failure; but gssapi authentication for squid and ldap work fine on the same box (both 7.2 and 8.0). I'm stuck. The OpenSSH folks say that nothing has changed that would break gssapi authentication. Does *anybody* have this working? --=20 John Marshall --n8BV0TfTmv8nl9Pc Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (FreeBSD) iEYEARECAAYFAkqORkYACgkQw/tAaKKahKJKXACfX+g/Lp0hNMYFttDNaL4RAbHA WYUAoJYbk16ySyPBp+i5NMTojIcXez89 =uiGt -----END PGP SIGNATURE----- --n8BV0TfTmv8nl9Pc--