Attachment #1412 for bug #1416

Lines 24-32 Link Here

(-)../PR-4853931~dst.orig/private/etc/ssh_config (-2 / +2 lines)
24	# RSAAuthentication yes	24	# RSAAuthentication yes
25	# PasswordAuthentication yes	25	# PasswordAuthentication yes
26	# HostbasedAuthentication no	26	# HostbasedAuthentication no
27	# GSSAPIAuthentication no	27	# GSSAPIAuthentication yes
28	# GSSAPIDelegateCredentials no	28	# GSSAPIDelegateCredentials no
29	# GSSAPIKeyExchange no	29	# GSSAPIKeyExchange yes
30	# GSSAPITrustDNS no	30	# GSSAPITrustDNS no
31	# BatchMode no	31	# BatchMode no
32	# CheckHostIP yes	32	# CheckHostIP yes

Lines 70-79 Link Here

(-)../PR-4853931~dst.orig/private/etc/sshd_config (-2 / +2 lines)
70	#KerberosGetAFSToken no	70	#KerberosGetAFSToken no
71		71
72	# GSSAPI options	72	# GSSAPI options
73	#GSSAPIAuthentication no	73	#GSSAPIAuthentication yes
74	#GSSAPICleanupCredentials yes	74	#GSSAPICleanupCredentials yes
75	#GSSAPIStrictAcceptorCheck yes	75	#GSSAPIStrictAcceptorCheck yes
76	#GSSAPIKeyExchange no	76	#GSSAPIKeyExchange yes
77		77
78	# Set this to 'yes' to enable PAM authentication, account processing,	78	# Set this to 'yes' to enable PAM authentication, account processing,
79	# and session processing. If this is enabled, PAM authentication will	79	# and session processing. If this is enabled, PAM authentication will




.It Cm GSSAPIAuthentication
Specifies whether user authentication based on GSSAPI is allowed.
The default is
.Dq yes .
Note that this option applies to protocol version 2 only.
.It Cm GSSAPIKeyExchange
Specifies whether key exchange based on GSSAPI may be used. When using
GSSAPI key exchange the server need not have a host key.
The default is
.Dq yes .
Note that this option applies to protocol version 2 only.
.It Cm GSSAPIDelegateCredentials
Forward (delegate) credentials to the server.




.It Cm GSSAPIAuthentication
Specifies whether user authentication based on GSSAPI is allowed.
The default is
.Dq yes .
Note that this option applies to protocol version 2 only.
.It Cm GSSAPIKeyExchange
Specifies whether key exchange based on GSSAPI is allowed. GSSAPI key exchange 
doesn't rely on ssh keys to verify host identity.
The default is
.Dq yes .
Note that this option applies to protocol version 2 only.
.It Cm GSSAPICleanupCredentials
Specifies whether to automatically destroy the user's credentials cache

Return to bug 1416

Lines 477-489 Link Here

(-)../PR-4853931~dst.orig/usr/share/man/man5/ssh_config.5 (-2 / +2 lines)
477	.It Cm GSSAPIAuthentication	477	.It Cm GSSAPIAuthentication
478	Specifies whether user authentication based on GSSAPI is allowed.	478	Specifies whether user authentication based on GSSAPI is allowed.
479	The default is	479	The default is
480	.Dq no .	480	.Dq yes .
481	Note that this option applies to protocol version 2 only.	481	Note that this option applies to protocol version 2 only.
482	.It Cm GSSAPIKeyExchange	482	.It Cm GSSAPIKeyExchange
483	Specifies whether key exchange based on GSSAPI may be used. When using	483	Specifies whether key exchange based on GSSAPI may be used. When using
484	GSSAPI key exchange the server need not have a host key.	484	GSSAPI key exchange the server need not have a host key.
485	The default is	485	The default is
486	.Dq no .	486	.Dq yes .
487	Note that this option applies to protocol version 2 only.	487	Note that this option applies to protocol version 2 only.
488	.It Cm GSSAPIDelegateCredentials	488	.It Cm GSSAPIDelegateCredentials
489	Forward (delegate) credentials to the server.	489	Forward (delegate) credentials to the server.

Lines 315-327 Link Here

(-)../PR-4853931~dst.orig/usr/share/man/man5/sshd_config.5 (-2 / +2 lines)
315	.It Cm GSSAPIAuthentication	315	.It Cm GSSAPIAuthentication
316	Specifies whether user authentication based on GSSAPI is allowed.	316	Specifies whether user authentication based on GSSAPI is allowed.
317	The default is	317	The default is
318	.Dq no .	318	.Dq yes .
319	Note that this option applies to protocol version 2 only.	319	Note that this option applies to protocol version 2 only.
320	.It Cm GSSAPIKeyExchange	320	.It Cm GSSAPIKeyExchange
321	Specifies whether key exchange based on GSSAPI is allowed. GSSAPI key exchange	321	Specifies whether key exchange based on GSSAPI is allowed. GSSAPI key exchange
322	doesn't rely on ssh keys to verify host identity.	322	doesn't rely on ssh keys to verify host identity.
323	The default is	323	The default is
324	.Dq no .	324	.Dq yes .
325	Note that this option applies to protocol version 2 only.	325	Note that this option applies to protocol version 2 only.
326	.It Cm GSSAPICleanupCredentials	326	.It Cm GSSAPICleanupCredentials
327	Specifies whether to automatically destroy the user's credentials cache	327	Specifies whether to automatically destroy the user's credentials cache