backdoor by authorized_keys2 leftovers

Jameson Graef Rollins jrollins at finestructure.net
Wed May 11 19:58:55 EST 2011


On Wed, 11 May 2011 18:44:59 +1000 (EST), Damien Miller <djm at mindrot.org> wrote:
> > I'd document, rather than remove. I think all my systems use
> > authorized_keys2.  You will end up locking users and admins out. 
> 
> We'll document the removal :) Really, there is no reason to have two
> files that do exactly the same thing.

Actually, there are a lot of reasons to have multiple authorized_keys
files.  One user controlled and one admin controlled is just the first
thing that pops in to my head.  I'm sure we can think of lots of other
reasons as well.

jamie.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20110511/d1f70c04/attachment.bin>


More information about the openssh-unix-dev mailing list