GSSAPI Key Exchange in sshd?

Kevin Way kevin at insidesystems.net
Wed Sep 19 10:54:32 PDT 2007


I'm curious if there are technical (or other) reasons that prevent  
FreeBSD from adding RFC 4462 (GSSAPI Key Exchange) support to sshd.   
The MIT Kerberos team first requested this four years ago, and  
implementation patches have been available for years at: http:// 
www.sxw.org.uk/computing/patches/openssh.html

The author of those patches has offered (without much public  
response) to allow integration of the patches into the openssh source  
distribution, so I don't think licensing would be an issue.

This would be incredibly useful to me, as it'd remove the burden of  
site-wide ssh host key distribution.

Regards,
Kevin Way


More information about the freebsd-hackers mailing list