RTFM Help on Privilege Separation Programming
Damien Miller
djm at mindrot.org
Tue Jul 2 12:37:40 EST 2002
On Mon, 2002-07-01 at 13:58, Michael Krivacek wrote:
>
> Hi,
>
> This my first try at programming with OpenSSH. I am working on
> porting Securid Authentication to OpenSSH. I have been using the
> current code for S/Key support as my basis for what I need to
> modify. The non-privileged code seemed fairly straightforward on
> what was needed for each of the KbdintDevice functions (i.e.
> init_ctx, query, respond, etc) I have a system that works pretty
> well for non-privilege separation mode.
>
> Now I am trying to get my mind around the separation mode
> function requirements. Can one safely say that the S/Key code
> is complete in the portable 3.4.0p1 release?
Have a look at the PAM kbd-int patch that I just posted for a working
example of how to hook up a kbd-int module through privsep.
-d
More information about the openssh-unix-dev
mailing list