Re: GSSAPI authentication

To: ietf-ssh%netbsd.org@localhost
Subject: Re: GSSAPI authentication
From: Jeffrey Hutzelman <jhutz%cmu.edu@localhost>
Date: Mon, 23 Jul 2001 16:27:37 -0400 (EDT)

On Thu, 21 Jun 2001, Jeffrey Hutzelman wrote:

> Joe Galbraith is one of the authors of the user auth draft mentioned
> above, and he indicated he might have some time to work on the changes
> involved in the merger.  I've sent him a brief description of what I had
> in mind, as well as information about a couple of protocol changes we
> discussed at the WG meeting in Minneapolis (particularly, signing the host
> key during key exchange so that sessions don't have to die when the GSSAPI
> creds used for the initial key exchange expire).
> 
> My goal is to get another version of this draft out soon enough that we
> can take into account comments from implementors and this list, and get
> any corrections out before the London IETF meeting.

Well, I didn't do quite as well as I would have liked.  I submitted the
combined user auth and key exchange draft before the 20-Jul-2001 deadline,
as a new version of draft-ietf-secsh-gsskeyex.  The new version includes
the protocol changes I mentioned above, plus a couple of minor but
incompatible changes to the key exchange to make things a bit cleaner.
Unfortunately, I didn't get a chance to invite comment from the list
before publishing the new version.  I'm sure this won't be the last
version of this draft, so I'll be looking forward to hearing comments both
on the list and at the WG meeting in London.

-- Jeff

References:
- Re: GSSAPI authentication
  - From: Jeffrey Hutzelman

Prev by Date: agenda items for secsh meeting at 51st IETF meeting in London
Next by Date: drafts appear to have been published; please review.
Previous by Thread: Re: GSSAPI authentication
Next by Thread: I-D ACTION:draft-ietf-secsh-publickeyfile-02.txt
Indexes:

Home | Main Index | Thread Index | Old Index