[Bug 2755] [PATCH] sshd_config: allow directories in AuthorizedKeysFile=

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Tue Feb 12 08:33:15 AEDT 2019


https://bugzilla.mindrot.org/show_bug.cgi?id=2755

--- Comment #9 from Erik Sjölund <erik.sjolund at gmail.com> ---
Regarding the order of files from readdir():

It seems readdir() has no guaranty about order: 

https://stackoverflow.com/questions/8977441/does-readdir-guarantee-an-order

I think the order could influence how access is given by the server if
multiple keys allow access in different ways.  Because of that it would
make sense to define an order in which the files are read. For
simplicity I would suggest alphabetical order.

Some limits are probably needed regarding the maximum number of
authorized files and the maximum filename length. Maybe those numbers
could be configurable.

The allowed set of characters in the filenames should probably also be
limited.
To make the alphabetical ordering easy to understand one could limit
the allowed characters to be for instance

a-z 

or maybe a bit more generous:

a-z
0-9
_

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list