[openssh-unix-dev] Re: Creating users "on - the - fly"

Daniel Kahn Gillmor dkg at fifthhorseman.net
Sat Feb 7 07:02:58 AEDT 2015

On Fri 2015-02-06 14:30:13 -0500, Cary FitzHugh wrote:
> Hence  - maybe a NSS User Database extension which looks for the
> public keys from a webservice (and then maybe writes them to
> /tmp/<username>.

No, i'm suggesting that when you want to look up the user, use NSS to
find the username and map it to a numeric user ID and the other
information that is typically found in /etc/passwd.  this doesn't write
anything to the local disk.

> The AuthorzedKeysCommand could then just return the tmp/username information..

Then the AuthorizedKeysCommand can return the proper key material.


More information about the openssh-unix-dev mailing list