[Bug 2102] New: [PATCH] Specify PAM Service name in sshd_config

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue May 14 06:28:51 EST 2013


https://bugzilla.mindrot.org/show_bug.cgi?id=2102

            Bug ID: 2102
           Summary: [PATCH] Specify PAM Service name in sshd_config
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: 6.2p1
          Hardware: All
                OS: All
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: PAM support
          Assignee: unassigned-bugs at mindrot.org
          Reporter: kenneth.schmidt at pnnl.gov

Created attachment 2267
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2267&action=edit
patch to allow configuring the pam service

The attached patch allows openssh to specify which pam service name to
authenticate users against by specifying the PAMServiceName attribute
in
the sshd_config file.  Because the parameter can be included in the
Match
directive sections, it allows different authentication based on the
Match
directive.  In our case, we use it to allow different levels of
authentication based on the source of the authentication attempts
(securID auth in untrusted zones, password auth in trusted zones).  The
default is still to use the binary name.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list