Feature request: Allow custom directory for privilege separation in the configuration file. And change the pam module.
Jakub Jelen
jjelen at redhat.com
Mon Aug 5 22:39:21 AEST 2019
On Sun, 2019-08-04 at 15:39 +0200, Ramón García wrote:
> In order to be able to have different instances of sshd running in a
> machine (for instance, one for system administrators, other for a
> file
> transfer service) it should be useful:
>
> - To allow the administrator to specify the name of the pam module,
> so
> that one can create a customized file in /etc/pam.d
If you can rebuild OpenSSH, a trivial patch implementing this is here
for more than 5 years:
https://bugzilla.mindrot.org/show_bug.cgi?id=2102
later replaced by more complicated version in:
https://bugzilla.mindrot.org/show_bug.cgi?id=2246
But neither got in so far.
Regards,
--
Jakub Jelen
Senior Software Engineer
Security Technologies
Red Hat, Inc.
More information about the openssh-unix-dev
mailing list