FS#14835 - [openssh] GSSAPI authentication fails with Round Robin DNS hosts

Attached to Project: Arch Linux
Opened by Sebastien Binet (bins) - Tuesday, 26 May 2009, 13:07 GMT
Last edited by Gaetan Bisson (vesath) - Saturday, 19 February 2011, 18:48 GMT
Task Type Feature Request
Category Packages: Core
Status Closed
Assigned To Aaron Griffin (phrakture)
Thomas Bächler (brain0)
Guillaume ALAUX (galaux)
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 1
Private No

Details

Description:
GSSAPI authentication fails with Round Robin DNS hosts

this prevents from using the passphrase mode of SSH (v2) when the remote site performs round robin DNS load balancing.
please consider applying the attached patch which applies cleanly against the current 5.2p1 openssh version.

more informations:
https://bugzilla.mindrot.org/show_bug.cgi?id=1008
https://bugzilla.mindrot.org/attachment.cgi?id=1177
-> md5: a3492886ba5de91ffbdaed1fa2f3b3da

cheers,
sebastien.
This task depends upon

Closed by  Gaetan Bisson (vesath)
Saturday, 19 February 2011, 18:48 GMT
Reason for closing:  Upstream
Comment by Sebastien Binet (bins) - Tuesday, 26 May 2009, 13:08 GMT
some more infos:
http://linux.web.cern.ch/linux/docs/kerberos-access.shtml#sshopts
Comment by Sebastien Binet (bins) - Monday, 07 December 2009, 11:15 GMT
hi,

any timeframe to apply this patch ?

cheers,
sebastien.
Comment by Gerardo Exequiel Pozzi (djgera) - Friday, 05 March 2010, 03:23 GMT
any decision status of this?
Comment by Paul Mattal (paul) - Saturday, 06 March 2010, 20:35 GMT
Has upstream opined on this patch? Why have they not applied it yet? Has anyone requested this support upstream?

Comment by Gaetan Bisson (vesath) - Saturday, 19 February 2011, 18:48 GMT
I am reluctant to patch OpenSSH since it is quite critial and well maintained upstream.
As no dev implemented this, I deduce they feel the same.
Please resolve this issue upstream.

Loading...