http://bugzilla.mindrot.org/show_bug.cgi?id=1100
------- Comment #1 from dtucker@zip.com.au 2006-08-18 21:12 -------
(In reply to comment #0)
> Second, auth2.c calls pwnamallow("") early, before attempting the
> gssapi authentication. Untangling this bit of code from the (given)
> username check so as to allow empty usernames is not going to be
> simple. The gss token exchange has to complete before a username can be
> determined.
There's an example of how to work around this for PAM in bug #1215
although it may not be the best way.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs
------- Comment #1 from dtucker@zip.com.au 2006-08-18 21:12 -------
(In reply to comment #0)
> Second, auth2.c calls pwnamallow("") early, before attempting the
> gssapi authentication. Untangling this bit of code from the (given)
> username check so as to allow empty usernames is not going to be
> simple. The gss token exchange has to complete before a username can be
> determined.
There's an example of how to work around this for PAM in bug #1215
although it may not be the best way.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs