[PATCH] Feature addition: user access control per auth method
Frank Cusack
fcusack at fcusack.com
Fri Mar 29 06:13:33 EST 2002
On Thu, Mar 28, 2002 at 10:59:49AM -0600, Raymond M. Reskusich wrote:
> I added a few features to openssh for my local use that I think would
> be more broadly useful. I basically added access control lists to
> control who would be allowed public key authentication. I added four
> config file entries for the server:
>
> PubkeyAllowUsers
> PubkeyDenyUsers
> PubkeyAllowGroups
> PubkeyDenyGroups
[...]
IMHO, this is better done with the PAMAcctService proposal from a week ago.
Of course, yours is better in that there's actual code. :-)
/fc
More information about the openssh-unix-dev
mailing list