You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Apparently, with the patchset there comes another authentication method "gssapi-keyex".
It should be documented what it actually does (in contrast to gssapi-with-mic).
How it's activated on client and server side, i.e. all the other auth methods have their own option that enables/disables it (e.g. PubkeyAuthentication) while gssapi-keyex seems to be enabled whenever GSSAPI based KEX is enabled.
It should be documented as a value for the PreferredAuthentications and AuthenticationMethods.
Possibly, it would also make sense to alter the default of PreferredAuthentications to include gssapi-keyex when GSSAPI KEX is eanbled?
Hi.
Apparently, with the patchset there comes another authentication method "gssapi-keyex".
It should be documented what it actually does (in contrast to gssapi-with-mic).
How it's activated on client and server side, i.e. all the other auth methods have their own option that enables/disables it (e.g. PubkeyAuthentication) while gssapi-keyex seems to be enabled whenever GSSAPI based KEX is enabled.
It should be documented as a value for the PreferredAuthentications and AuthenticationMethods.
Possibly, it would also make sense to alter the default of PreferredAuthentications to include gssapi-keyex when GSSAPI KEX is eanbled?
Cheers,
Chris.
btw: Still not possible to report issues at https://github.com/gss-openssh/openssh-portable
The text was updated successfully, but these errors were encountered: