[PATCH] tis authserv support

Mark D. Roth roth+openssh at feep.net
Sat Dec 9 05:09:28 EST 2000


On Fri Dec 08 14:40 2000 +0100, Balazs Scheidler wrote:
> Our patch doesn't link to fwtk's libauth.a, but uses its own implementation 
> of the protocol, and fetches configuration options from sshd_config.

Hrmm.  What are the advantages of that setup?  I may be missing
something, but it seems to me that it would make more sense to use the
existing API so that the application is shielded from the protocol
details.  It also seems preferable to specify the auth servers in
TIS's netperm-table file so that you don't have to list the same
servers in a different config file for every program which talks to
the auth servers.

Are there problems with this setup which I'm missing?  If so, please
let me know.  Thanks!

(BTW, the patch I posted allows the administrator to choose between
S/Key and TIS authentication at run-time.  It also supports the
sshd_tis.map file for compatibility with the commercial ssh
implementation.)

-- 
Mark D. Roth <roth at feep.net>
http://www.feep.net/~roth/





More information about the openssh-unix-dev mailing list