Enable GSSAPI Authentication, ensure credentials are destroyed on
logout. Use kerberos host key for verficiation instead of the ssh host
keys (it's how we do it now and it seems sane since kerberos is the
law at HCoop).
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
+# hcoop-changes
# GSSAPI options
-#GSSAPIAuthentication no
-#GSSAPICleanupCredentials yes
+GSSAPIAuthentication yes
+GSSAPICleanupCredentials yes
+# Check the kerberos host key instead of the ssh host keys
+GSSAPIKeyExchange yes
+# hcoop-changes
X11Forwarding yes
X11DisplayOffset 10