[openssh-unix-dev] Re: Creating users "on - the - fly"
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Sat Feb 7 07:02:58 AEDT 2015
On Fri 2015-02-06 14:30:13 -0500, Cary FitzHugh wrote:
> Hence - maybe a NSS User Database extension which looks for the
> public keys from a webservice (and then maybe writes them to
> /tmp/<username>.
No, i'm suggesting that when you want to look up the user, use NSS to
find the username and map it to a numeric user ID and the other
information that is typically found in /etc/passwd. this doesn't write
anything to the local disk.
> The AuthorzedKeysCommand could then just return the tmp/username information..
Then the AuthorizedKeysCommand can return the proper key material.
--dkg
More information about the openssh-unix-dev
mailing list