ssh could have a grace period a la sudo
Dave Yost
Dave at Yost.com
Sun Aug 30 18:10:43 EST 2009
Hi.
It would be nice to be able to configure sshd so that the following would work:
After a successful password-authenticated connection from client user
x on client host y, subsequent connections from client user x on
client host y within a (resetting) time limit would succeed without
re-authenticating via password.
Perhaps this would be achieved by sshd sending the client ssh a key
that the client would save in a file in its .ssh folder, to be used
for authentication on subsequent connections. After a timeout (which
resets on re-use), sshd would no longer accept this key. If the
client tries and fails to authenticate with this cached key, the
client deletes the stored-key file.
Dave
More information about the openssh-unix-dev
mailing list