[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH

To: Michal Prochazka <michalp@ics.muni.cz>
Subject: Re: GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH
From: Michael B Allen <mba2000@ioplex.com>
Date: Thu, 15 Feb 2007 14:10:34 -0500
Cc: heimdal-discuss@sics.se
In-Reply-To: <45D4691E.7050304@ics.muni.cz>
References: <45D4691E.7050304@ics.muni.cz>
Sender: owner-heimdal-discuss@sics.se

On Thu, 15 Feb 2007 15:07:26 +0100
Michal Prochazka <michalp@ics.muni.cz> wrote:

> So the difference is only in gssapi library.

GSSAPI doesn't know anything about "Tickets". For OpenSSH to save
delegated credentials it must use Kebreros implementation specific
functionality (eg gss_krb5_copy_ccache in Heimdal). I know nothing of
OpenSSH but I would look at OpenSSH's "cleanup" code.

Mike

-- 
Michael B Allen
PHP Active Directory SSO
http://www.ioplex.com/

References:
- GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH
  - From: Michal Prochazka <michalp@ics.muni.cz>

Prev by Date: GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH
Next by Date: Re: GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH
Prev by thread: GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH
Next by thread: Re: GSSAPI lib from Heimdal does not cleanup credentials in OpenSSH
Index(es):
- Date
- Thread