Initial patch to implement partial auth with SSH2
Carson Gaspar
carson at taltos.org
Wed Mar 28 18:59:12 EST 2001
Attached is a patch which adds a new config option, AuthOrder2, to
sshd_config.c. The syntax is:
AuthOrder2 AuthMethod1[:SubAuthMethod1[:SubAuthMethod2...]][,AuthMethod2...]
An example, requiring users to enter a public key _and_ a password, in that
order:
AuthOrder2 publickey:password
The current default behaviour:
AuthOrder2 password,publickey,keyboard-interactive
Require a public key, then either a password or keyboard-interactive:
AuthOrder2 publickey:password,publickey:keyboard-interactive
It's still a rough patch, and has not been heavily tested. I'd appreciate
any feedback people have. I'd like to get this committed to the main tree
at some point, so if the maintainers have any architectural changes they'd
like in order to accomplish that, I'd be happy to comply.
--
Carson
-------------- next part --------------
A non-text attachment was scrubbed...
Name: partialauth.patch
Type: application/octet-stream
Size: 10272 bytes
Desc: not available
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20010328/27425593/attachment.obj
More information about the openssh-unix-dev
mailing list