AuthorizedKeysFile

Austin Gonyou austin at coremetrics.com
Fri Apr 19 05:44:03 EST 2002 

Authorized_keys2 is going away permanently someday I'm sure. This could
be a preventative measure to keep people from *just* using it so it can
retire gracefully.



On Thu, 2002-04-18 at 12:35, King, Brian wrote:
> OpenSSH 3.1 
> 
> Not really a bug, but an "undocumented feature". 
> The default sshd_config file show the default setting for
> AuthorizedKeysFile as being: 
> 
> AuthorizedKeysFile      .ssh/authorized_keys 
> 
> If you uncomment that default, it changes the "undocumented" setting for
> "AuthorizedKeysFile2", which is by default: 
> 
> AuthorizedKeysFile2      .ssh/authorized_keys2 
> 
> Suggestions for change: 
>  1 - Add AuthorizedKeysFile2 to the man page for sshd. 
>  2 - Add it's default setting to the default sshd_config file. 
>  3 - Make the settings independent (so that setting only
> AuthorizedKeysFile doesn't remove the setting for AuthorizedKeysFile2).
> 
> Even better, would be to do away with AuthorizedKeysFile2 and have
> AuthorizedKeysFile work like HostKey in that you can use it multiple
> times in a config file to list multiple key files to check.
> 
> Thanks for a great product! 
> 
> Brian King 
> 
> PS. I don't read this list so any responses should be sent directly to
> me. 
> 
> ------------------------------------------------------------------------
> ---- 
> 
> This communication (including all attachments) is intended solely for
> the 
> use of the person or persons to whom it is addressed and should be
> treated 
> as a  confidential xwave communication.  If you are not the intended 
> recipient, any use, distribution, printing, or copying of this email is 
> strictly prohibited.  If you received this email in error, please 
> immediately delete it from your system and notify the originator.  Your 
> cooperation is appreciated. 
> 
-- 
Austin Gonyou
Systems Architect, CCNA
Coremetrics, Inc.
Phone: 512-698-7250
email: austin at coremetrics.com

"It is the part of a good shepherd to shear his flock, not to skin it."
Latin Proverb
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: This is a digitally signed message part
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020418/4d7ef393/attachment.bin

More information about the openssh-unix-dev mailing list