macOS Sierra broke SSH Kerberos authentication

macos ssh terminal kerberos

I asked this in the SSH mailing list [email protected] and I got this answer:

The GSSAPITrustDNS was never part of portable OpenSSH. This option originally comes from third party extending kerberos support in OpenSSH, which is no longer maintained, but can be simply rebased on the current sources.

The problem in this case is Apple dropping this patch used by many people, so the Apple is the place where you should ask (or your OpenSSH packager of your favorite repository).

http://marc.info/?l=openssh-unix-dev&m=147850754710753&w=2

It seems that we have to ask apple to put this feature back.


Apparently apple used to apply some GSSAPI patches to their openssh version, but have recently stopped doing it. Fix: build your own with the patches: https://stackoverflow.com/a/46454141/32453

Related

Methods for copying Time Machine backups offsite
Can .mp4 files infect my Mac with malware/adware/spyware?
bluetooth keyboard not in keyboard preferences
How can you tell what time a photo sent via iMessage was taken?
How to disable faces/people recognition in iOS10?
How long will FileVault encryption take? Can I stop it?
Reset/change Emoji color for human features
Word file compatibility between mac and pc
macOS Sierra - why did my Calendar stop free-scrolling?
Time Machine Backups taking too much space?
Where does the iPhone save contacts?
Cant get iOS 10.2.1 and OSX 10.10.5 devices to allow phone calls from OSX