Re: Retrieving authorized_keys via remote script

From: Peter Stuge <peter_at_nospam>
Date: Tue Dec 20 2011 - 06:09:14 GMT
To: openssh-unix-dev@mindrot.org

Michael J. Flickinger wrote:
>>> a clean and safe way to extend the authorized_keys functionality.
>>
>> How safe it is depends on what you execute I guess.
>
> You cannot really baby-sit the user though, they can already do
> unsafe things...

It's not about the user, but about root who runs sshd, and suddenly
requires even more clue in order to run a tight ship.

I completely understand being conservative with adding hooks and
"plugins" in sshd.

//Peter
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

This message: [ Message body ]
Next message: Michael J. Flickinger: "Re: Retrieving authorized_keys via remote script"
Previous message: Michael J. Flickinger: "Re: Retrieving authorized_keys via remote script"
In reply to: Michael J. Flickinger: "Re: Retrieving authorized_keys via remote script"
Next in thread: Michael J. Flickinger: "Re: Retrieving authorized_keys via remote script"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]