From fde9b194179a0d197edfdcd0e3a1567bbfc87d32 Mon Sep 17 00:00:00 2001
From: Sam Hartman <hartmans@debian.org>
Date: Tue, 27 Nov 2012 06:34:58 -0500
Subject: [PATCH] Update mech_eap oid

---
 ConfiguringRHEL.mdwn    | 2 +-
 configuringdebian.mdwn  | 5 +++--
 testing/gss-sample.mdwn | 8 ++++++++
 testing/radsec.mdwn     | 9 +--------
 4 files changed, 13 insertions(+), 11 deletions(-)
 create mode 100644 testing/gss-sample.mdwn
diff --git a/ConfiguringRHEL.mdwn b/ConfiguringRHEL.mdwn
index 70d8ffd..f1a0756 100644
--- a/ConfiguringRHEL.mdwn
+++ b/ConfiguringRHEL.mdwn
@@ -185,7 +185,7 @@ To start the _gss-server_, run:
 
 There are two ways to start _gss-client_ â the first specifies an encryption method to use by its OID 1.3.6.1.4.1.5322.22.1.18 (as seen in /etc/gss/mech):
 
-    /opt/moonshot/bin/gss-client -mech "{1 3 6 1 4 1 5322 22 1 18}" 127.0.0.1 host@localhost bar
+    /opt/moonshot/bin/gss-client -mech "{1.3.6.1.5.5.15.1.1.18 }" 127.0.0.1 host@localhost bar
 
 The second uses __Simple and Protected GSSAPI Negotiation Mechanism (SPNEGO)__<br />
 This chooses the "best" mutually-agreeable encryption method for between client and server.  To invoke the client using __SPNEGO__, use:
diff --git a/configuringdebian.mdwn b/configuringdebian.mdwn
index a36beda..8c042b7 100644
--- a/configuringdebian.mdwn
+++ b/configuringdebian.mdwn
@@ -49,7 +49,8 @@ Clean installation of Debian 6.
     cat >/usr/etc/gss/mech <<EOF
     eap-aes128      1.3.6.1.4.1.5322.22.1.17    mech_eap.so
     eap-aes256      1.3.6.1.4.1.5322.22.1.18    mech_eap.so
+eap-aes128		1.3.6.1.5.5.15.1.1.17		mech_eap.so
+eap-aes256		1.3.6.1.5.5.15.1.1.18		mech_eap.so
     EOF
 
-    gss-server host@localhost &
-    gss-client -mech "{1 3 6 1 4 1 5322 22 1 17}" localhost host@localhost HELLO
+[[!inline pages=testing-/gss-sample.mdwn]]
diff --git a/testing/gss-sample.mdwn b/testing/gss-sample.mdwn
new file mode 100644
index 0000000..ef72a80
--- /dev/null
+++ b/testing/gss-sample.mdwn
@@ -0,0 +1,8 @@
+    gss-server host@localhost&
+    gss-client -mech '{ 1.3.6.1.5.5.15.1.1.18                                                         }' localhost host@localhost bar
+
+This should produce lots of interesting output, ending with
+
+	Received message: "bar"
+	Signature verified.
+	NOOP token
diff --git a/testing/radsec.mdwn b/testing/radsec.mdwn
index 7f18a9c..0a99166 100644
--- a/testing/radsec.mdwn
+++ b/testing/radsec.mdwn
@@ -63,11 +63,4 @@ in radsec.conf and don't make the change createRadiusHandle().
 	Good auth.
 
 ### Test with gss-server and gss-client
-    ~/krb5-1.9/src/appl/gss-sample/gss-server host@moonshot-test.project-moonshot.org &
-    ~/krb5-1.9/src/appl/gss-sample/gss-client -mech "{1 3 6 1 4 1 5322 22 1 18}" -user steve@local -pass testing  127.0.0.1 host@localhost bar
-
-This should produce lots of interesting output, ending with
-
-	Received message: "bar"
-	Signature verified.
-	NOOP token
+[[!inline pages=testing/gss-sample.mdwn]]
-- 
2.1.4

