[Bug 2408] Expose authentication information to PAM

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Fri Jul 1 22:26:04 AEST 2016


https://bugzilla.mindrot.org/show_bug.cgi?id=2408

Vincent Brillault <git at lerya.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Attachment #2792|0                           |1
        is obsolete|                            |
   Attachment #2812|0                           |1
        is obsolete|                            |

--- Comment #8 from Vincent Brillault <git at lerya.net> ---
Created attachment 2846
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2846&action=edit
Expose successful auth methods via environments (pam and shell)

Sorry for the delay.

Here is a new version of the patch:
- Defining the parameter as SSHCFG_ALL, to be used in a Match block
- Setting default value to EXPOSE_AUTHMETH_NEVER (I don't have a strong
opinion on the default, 'pam-only' would simply the transition for me,
but I can adapt)

I'm adding a new version of the patch here in the ticket tracker, but
all the atomic patches are available on our Github repo
(https://github.com/CERN-CERT/openssh-portable) and the associated PR:
https://github.com/openssh/openssh-portable/pull/47

For Redhat/Centos 7 based openssh versions, we also have adapted
patches (used internally):
https://github.com/CERN-CERT/pam_2fa/tree/gh-pages/atomic

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list