sshd config parser

Gert Doering gert at
Thu Mar 30 08:13:12 EST 2006


On Wed, Mar 29, 2006 at 01:40:41PM -0500, Daniel Kahn Gillmor wrote:
> i'll chime in thirdly to say that this sounds very good.  i've been
> wanting controls like this for sshd for a while, but hadn't taken the
> time to articulate it clearly.  It looks like this proposal would meet
> my needs quite well.

"fourthly", or so.

We have *exactly* this need at work - "from *this* network, permit
password authentication.  From everywhere else, only permit RSA keys
or S/Key".  (Right now, we do this with PAM, but it's not pretty).

Thanks for formulating an approach that will make all this very easy.

USENET is *not* the non-clickable part of WWW!
Gert Doering - Munich, Germany                             gert at
fax: +49-89-35655025                        gert at

More information about the openssh-unix-dev mailing list