sshd config parser
Gert Doering
gert at greenie.muc.de
Thu Mar 30 08:13:12 EST 2006
Hi,
On Wed, Mar 29, 2006 at 01:40:41PM -0500, Daniel Kahn Gillmor wrote:
> i'll chime in thirdly to say that this sounds very good. i've been
> wanting controls like this for sshd for a while, but hadn't taken the
> time to articulate it clearly. It looks like this proposal would meet
> my needs quite well.
"fourthly", or so.
We have *exactly* this need at work - "from *this* network, permit
password authentication. From everywhere else, only permit RSA keys
or S/Key". (Right now, we do this with PAM, but it's not pretty).
Thanks for formulating an approach that will make all this very easy.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list