[RFC PATCH 0/4] PAM module for ssh-agent user authentication

Jakub Jelen jjelen at redhat.com
Mon Aug 3 20:51:38 AEST 2020


On Tue, 2020-07-21 at 03:06 +0200, Domenico Andreoli wrote:
> Hi,
> 
> The main (and probably the only) use case of this PAM module is to
> let
> sudo authenticate users via their ssh-agent, therefore without having
> to type any password and without being tempted to use the NOPASSWD
> sudo
> option for such convenience.
> 
> The principle is originally implemented by an existing module [0][1]
> and many pages that explain how to use it for such purpose can be
> found online.

I really like this idea of pam_ssh_agent_auth living inside of openssh
repository. We are building these two together in Fedora and RHEL for
ages, mostly for the feature-parity.

Regards,
-- 
Jakub Jelen
Senior Software Engineer
Security Technologies
Red Hat, Inc.



More information about the openssh-unix-dev mailing list