132243 – app-crypt/heimdal: provide GSSAPI variables for ssh(1) client in /etc/ssh/ssh_config

Bug 132243 - app-crypt/heimdal: provide GSSAPI variables for ssh(1) client in /etc/ssh/ssh_config

Summary: app-crypt/heimdal: provide GSSAPI variables for ssh(1) client in /etc/ssh/ssh...

Status:	RESOLVED WONTFIX

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	Highest enhancement (vote)
Assignee:	Gentoo's Team for Core System packages

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2006-05-04 06:01 UTC by Martin Mokrejš
Modified:	2006-05-05 20:10 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Martin Mokrejš 2006-05-04 06:01:03 UTC

While inspecting bug # I was curious why sshd/ssh doesn't try my kerberos tickets. After some poking around and enabling the variables in /etc/ssh/sshd_config it turned out the *client* lacked the variables in /etc/ssh/ssh_config, which would instruct it to try gssapi. Please add to /etc/ssh/ssh_config these two lines:

# Instruct ssh(1) client to attempt GSSAPI authentication, see ssh_config(5)
# GSSAPIAuthentication yes
# GSSAPIDelegateCredentials yes

They should be commented out by default so people with USE="-kerberos" won't see warnings from sshd/ssh about unknown directives. This is simple fix, please push it soon into portage.

Comment 1 SpanKY gentoo-dev

2006-05-05 20:10:09 UTC

the ssh_config file notes that it is not a comprehensive list and that you should see the ssh_config(5) manpage for all options ...

you could file a bug at http://bugzilla.mindrot.org/ if you wish