Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-5281

[RFE] for disable GSSAPIDelegateCredentials in sshd_config

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • openssh-9.9p1-19.el10
    • None
    • 1
    • rhel-security-crypto-diamonds
    • ssg_security
    • 21
    • 0
    • False
    • False
    • Hide

      None

      Show
      None
    • Yes
    • Crypto25-12
    • Hide

      AC: There is an option on sshd server to reject ticket forwarding even if the client requests it

      Show
      AC: There is an option on sshd server to reject ticket forwarding even if the client requests it
    • Pass
    • Not Needed
    • New Test Coverage
    • Enhancement
    • Hide
      Feature, enhancement: GSSAPIDelegatedCredentials can be set server-side to "no" to forbid the delegation of credentials ("yes" is the default value for backward compatibility)
      Show
      Feature, enhancement: GSSAPIDelegatedCredentials can be set server-side to "no" to forbid the delegation of credentials ("yes" is the default value for backward compatibility)
    • Proposed
    • None
    • 57,005

      Description of problem:[RFE] The ssh client has the ability to set GSSAPIDelegateCredentials But Cu would like an option on the ssh server to disable GSSAPIDelegateCredentials- so even if the client requests it the server rejects the ticket forwarding.

      Version-Release number of selected component (if applicable): For RHEL 9

      Requirement:

      Server side flag to set GSSAPIDelegateCredentials == No in sshd_config

              dbelyavs@redhat.com Dmitry Belyavskiy
              rhn-support-jisjohns Jisho Johnson
              Dmitry Belyavskiy Dmitry Belyavskiy
              Miluse Bezo Konecna Miluse Bezo Konecna
              Mirek Jahoda Mirek Jahoda
              Votes:
              0 Vote for this issue
              Watchers:
              10 Start watching this issue

                Created:
                Updated: