Need information to bypass the preauth in openssh

Alex Bligh alex at alex.org.uk
Tue Jan 24 17:53:19 AEDT 2017


> On 24 Jan 2017, at 06:01, Darren Tucker <dtucker at zip.com.au> wrote:
> 
> On Tue, Jan 24, 2017 at 4:54 PM, Vishwanath KC <vicchi.cit at gmail.com> wrote:
> [...]
>> Distributor ID: Debian
>> Description:    Debian GNU/Linux 8.2 (jessie)
> 
> As you've seen, sshd requires that the system's getpwnam() function
> knows the user, without which it does not know, for example, what
> userid to run processes as should you manage to successfully
> authenticate.
> 
> You will need to either arrange for your system's NSS to know about
> your users somehow or modify sshd.

From memory, last time I got this working, we used NSS LDAP and
PAM LDAP, and got public keys over LDAP too. It required some
fiddling.

-- 
Alex Bligh






More information about the openssh-unix-dev mailing list