Hi Moonshot developers,
Back in June, Stefan Paetow and I discussed whether the GSI-OpenSSH
sources could also support GSS-EAP. Stefan pointed me to Sam's patch [1]
which I've now applied to the current GSI-OpenSSH sources [2] (updated for
OpenSSH 7.0p1). So far I've only tested that it doesn't break with GSS-GSI
(after some fixes [3]), which unfortunately doesn't mean too much because
GSS-GSI doesn't (yet) implement gss_localname() and gss_userok(). Soon
I'll try with GSS-SAML-EC [4]. If you have a chance to test the
GSI-OpenSSH sources with GSS-EAP, please let me know how it goes. GitHub
pull requests are very welcome.
Regards,
Jim
[1] https://github.com/SimonWilkinson/gss-openssh/pull/2
[2] https://github.com/ncsa/gsi-openssh
[3] https://github.com/painless-security/gss-openssh/pull/1
[4] https://github.com/fedushare/mech_saml_ec
|