[Bug 3853] Potential Match User block evasion for kerberos realm users
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Nov 7 15:23:35 AEDT 2025
https://bugzilla.mindrot.org/show_bug.cgi?id=3853
--- Comment #3 from Damien Miller <djm at mindrot.org> ---
IMO this really needs to be dealt with at the NSS level.
sshd is not the only piece of software can enforce policy based on
username. If this is "fixed" in sshd, then everything else still needs
fixing.
OTOH fixing it in NSS means that it is fixed for all software on the
system, not just sshd.
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list