[Bug 1646] Match directive does not override default settings

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Thu Sep 3 10:01:21 EST 2009


https://bugzilla.mindrot.org/show_bug.cgi?id=1646


Darren Tucker <dtucker at zip.com.au> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |dtucker at zip.com.au


--- Comment #3 from Darren Tucker <dtucker at zip.com.au> 2009-09-03 10:01:20 EST ---
(In reply to comment #2)
> If you are trying to refuse all access except to some subset of users,
> I suggest that you disable all authentication methods on the main
> config and then turn them back on for your allowed users in a Match
> block.

I'd like to add something like "Allow yes" or similar that simply sets
authctxt->valid at the start of the auth process.  This would play nice
with Match.  You could do:

Allow no
Match User fred
  Allow yes

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list