- markus@cvs.openbsd.org 2003/08/22 10:56:09

[auth2.c auth2-gss.c auth.h compat.c compat.h gss-genr.c gss-serv-krb5.c gss-serv.c monitor.c monitor.h monitor_wrap.c monitor_wrap.h readconf.c readconf.h servconf.c servconf.h session.c session.h ssh-gss.h ssh_config.5 sshconnect2.c sshd_config sshd_config.5] support GSS API user authentication; patches from Simon Wilkinson, stripped down and tested by Jakob and myself.
author: Darren Tucker <dtucker@zip.com.au> 2003-08-26 11:49:55 +1000
committer: Darren Tucker <dtucker@zip.com.au> 2003-08-26 11:49:55 +1000
commit: 0efd155c3c184f0eaa2e1eb244eaaf066e6906e0 (patch)
tree: 10f24586373d825d68cefd4a3746fe738cf0614a /sshd_config.5
parent: 30912f7259b771a1cf705c0bc47a6c3f3edffb43 (diff)
1 files changed, 14 insertions, 1 deletions
diff --git a/sshd_config.5 b/sshd_config.5
index 3d920cc80..8857c673d 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -34,7 +34,7 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd_config.5,v 1.22 2003/08/13 08:46:31 markus Exp $
+.\" $OpenBSD: sshd_config.5,v 1.23 2003/08/22 10:56:09 markus Exp $
 .Dd September 25, 1999
 .Dt SSHD_CONFIG 5
 .Os
@@ -225,6 +225,19 @@ or
 .Dq no .
 The default is
 .Dq no .
+.It Cm GSSAPIAuthentication
+Specifies whether authentication based on GSSAPI may be used, either using
+the result of a successful key exchange, or using GSSAPI user
+authentication.
+The default is 
+.Dq no .
+Note that this option applies to protocol version 2 only.
+.It Cm GSSAPICleanupCredentials
+Specifies whether to automatically destroy the user's credentials cache
+on logout.
+The default is
+.Dq yes .
+Note that this option applies to protocol version 2 only.
 .It Cm HostbasedAuthentication
 Specifies whether rhosts or /etc/hosts.equiv authentication together
 with successful public key client host authentication is allowed
author	Darren Tucker <dtucker@zip.com.au>	2003-08-26 11:49:55 +1000
committer	Darren Tucker <dtucker@zip.com.au>	2003-08-26 11:49:55 +1000
commit	0efd155c3c184f0eaa2e1eb244eaaf066e6906e0 (patch)
tree	10f24586373d825d68cefd4a3746fe738cf0614a /sshd_config.5
parent	30912f7259b771a1cf705c0bc47a6c3f3edffb43 (diff)

diff --git a/sshd_config.5 b/sshd_config.5 index 3d920cc80..8857c673d 100644 --- a/sshd_config.5 +++ b/sshd_config.5
@@ -34,7 +34,7 @@
34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
36	.\"	36	.\"
37	.\" $OpenBSD: sshd_config.5,v 1.22 2003/08/13 08:46:31 markus Exp $	37	.\" $OpenBSD: sshd_config.5,v 1.23 2003/08/22 10:56:09 markus Exp $
38	.Dd September 25, 1999	38	.Dd September 25, 1999
39	.Dt SSHD_CONFIG 5	39	.Dt SSHD_CONFIG 5
40	.Os	40	.Os
@@ -225,6 +225,19 @@ or
225	.Dq no .	225	.Dq no .
226	The default is	226	The default is
227	.Dq no .	227	.Dq no .
		228	.It Cm GSSAPIAuthentication
		229	Specifies whether authentication based on GSSAPI may be used, either using
		230	the result of a successful key exchange, or using GSSAPI user
		231	authentication.
		232	The default is
		233	.Dq no .
		234	Note that this option applies to protocol version 2 only.
		235	.It Cm GSSAPICleanupCredentials
		236	Specifies whether to automatically destroy the user's credentials cache
		237	on logout.
		238	The default is
		239	.Dq yes .
		240	Note that this option applies to protocol version 2 only.
228	.It Cm HostbasedAuthentication	241	.It Cm HostbasedAuthentication
229	Specifies whether rhosts or /etc/hosts.equiv authentication together	242	Specifies whether rhosts or /etc/hosts.equiv authentication together
230	with successful public key client host authentication is allowed	243	with successful public key client host authentication is allowed