Bug 1244

Summary: Detect auth configuration failures and don't count them against the client
Product: Portable OpenSSH Reporter: Simon Wilkinson <simon>
Component: Kerberos supportAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED FIXED    
Severity: enhancement CC: djm
Priority: P2    
Version: -current   
Hardware: All   
OS: All   
Bug Depends on:    
Bug Blocks: 1845    
Attachments:
Description Flags
Patch to add support for noting server caused failures none

Description Simon Wilkinson 2006-10-03 05:07:18 AEST 
The attached patch allows authentication procedures to signal that
an authentication failure is caused by misconfiguration on the server,
rather than erroneous information from the client, and so not count that
authentication failure against the client.

It is particularly useful when servers are configured with GSSAPIAuthentication
on, and the required keytab is not provided by the server administrator.
Comment 1 Simon Wilkinson 2006-10-03 05:08:39 AEST 
Created attachment 1196 [details]
Patch to add support for noting server caused failures
Comment 2 Damien Miller 2008-01-20 12:23:00 AEDT 
Comment on attachment 1196 [details]
Patch to add support for noting server caused failures

This looks sane to me.
Comment 3 Damien Miller 2011-01-24 12:30:51 AEDT 
Retarget unclosed bugs from 5.7=>5.8
Comment 4 Damien Miller 2011-03-10 13:53:16 AEDT 
patch applied - this will be in 5.9
Comment 5 Damien Miller 2011-09-06 15:33:09 AEST 
close resolved bugs now that openssh-5.9 has been released