RFC Errata
RFC 4462, "Generic Security Service Application Program Interface (GSS-API) Authentication and Key Exchange for the Secure Shell (SSH) Protocol", May 2006
Note: This RFC has been updated by RFC 8732, RFC 9142
Source of RFC: secsh (sec)
Errata ID: 1621
Status: Held for Document Update
Type: Editorial
Publication Format(s) : TEXT
Reported By: Ben Harris
Date Reported: 2008-11-25
Held for Document Update by: Pasi Eronen
Section 9 says:
In order for the "external-keyx" user authentication method to be used, it MUST have access to user authentication information obtained as a side-effect of the key exchange. If this information is unavailable, the authentication MUST fail.
It should say:
In order for the "gssapi-keyex" user authentication method to be used, it MUST have access to user authentication information obtained as a side-effect of the key exchange. If this information is unavailable, the authentication MUST fail.
Notes:
As mentioned in section 8, the "external-keyx" name was used by an earlier version of thespec, but got replaced by "gssapi-keyex" before publication.