OpenSSH 3.1 Not really a bug, but an "undocumented feature". The default sshd_config file show the default setting for AuthorizedKeysFile as being: AuthorizedKeysFile .ssh/authorized_keys If you uncomment that default, it changes the "undocumented" setting for "AuthorizedKeysFile2", which is by default: AuthorizedKeysFile2 .ssh/authorized_keys2 Suggestions for change: 1 - Add AuthorizedKeysFile2 to the man page for sshd. 2 - Add it's default setting to the default sshd_config file. 3 - Make the settings independent (so that setting only AuthorizedKeysFile doesn't remove the setting for AuthorizedKeysFile2). Even better, would be to do away with AuthorizedKeysFile2 and have AuthorizedKeysFile work like HostKey in that you can use it multiple times in a config file to list multiple key files to check. Thanks for a great product! Brian King PS. I don't read this list so any responses should be sent directly to me. ---------------------------------------------------------------------------- This communication (including all attachments) is intended solely for the use of the person or persons to whom it is addressed and should be treated as a confidential xwave communication. If you are not the intended recipient, any use, distribution, printing, or copying of this email is strictly prohibited. If you received this email in error, please immediately delete it from your system and notify the originator. Your cooperation is appreciated. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020418/b6d19743/attachment.html
Authorized_keys2 is going away permanently someday I'm sure. This could be a preventative measure to keep people from *just* using it so it can retire gracefully. On Thu, 2002-04-18 at 12:35, King, Brian wrote:> OpenSSH 3.1 > > Not really a bug, but an "undocumented feature". > The default sshd_config file show the default setting for > AuthorizedKeysFile as being: > > AuthorizedKeysFile .ssh/authorized_keys > > If you uncomment that default, it changes the "undocumented" setting for > "AuthorizedKeysFile2", which is by default: > > AuthorizedKeysFile2 .ssh/authorized_keys2 > > Suggestions for change: > 1 - Add AuthorizedKeysFile2 to the man page for sshd. > 2 - Add it's default setting to the default sshd_config file. > 3 - Make the settings independent (so that setting only > AuthorizedKeysFile doesn't remove the setting for AuthorizedKeysFile2). > > Even better, would be to do away with AuthorizedKeysFile2 and have > AuthorizedKeysFile work like HostKey in that you can use it multiple > times in a config file to list multiple key files to check. > > Thanks for a great product! > > Brian King > > PS. I don't read this list so any responses should be sent directly to > me. > > ------------------------------------------------------------------------ > ---- > > This communication (including all attachments) is intended solely for > the > use of the person or persons to whom it is addressed and should be > treated > as a confidential xwave communication. If you are not the intended > recipient, any use, distribution, printing, or copying of this email is > strictly prohibited. If you received this email in error, please > immediately delete it from your system and notify the originator. Your > cooperation is appreciated. >-- Austin Gonyou Systems Architect, CCNA Coremetrics, Inc. Phone: 512-698-7250 email: austin at coremetrics.com "It is the part of a good shepherd to shear his flock, not to skin it." Latin Proverb -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020418/4d7ef393/attachment.bin
we will remove AuthorizedKeysFile2 soon. i don't like to have it documented. -m On Thu, Apr 18, 2002 at 02:35:59PM -0300, King, Brian wrote:> OpenSSH 3.1 > > Not really a bug, but an "undocumented feature". > The default sshd_config file show the default setting for AuthorizedKeysFile > as being: > > AuthorizedKeysFile .ssh/authorized_keys > > If you uncomment that default, it changes the "undocumented" setting for > "AuthorizedKeysFile2", which is by default: > > AuthorizedKeysFile2 .ssh/authorized_keys2 > > Suggestions for change: > 1 - Add AuthorizedKeysFile2 to the man page for sshd. > 2 - Add it's default setting to the default sshd_config file. > 3 - Make the settings independent (so that setting only AuthorizedKeysFile > doesn't remove the setting for AuthorizedKeysFile2). > > Even better, would be to do away with AuthorizedKeysFile2 and have > AuthorizedKeysFile work like HostKey in that you can use it multiple times > in a config file to list multiple key files to check. > > Thanks for a great product! > > Brian King > > PS. I don't read this list so any responses should be sent directly to me. > > ---------------------------------------------------------------------------- > > This communication (including all attachments) is intended solely for the > use of the person or persons to whom it is addressed and should be treated > as a confidential xwave communication. If you are not the intended > recipient, any use, distribution, printing, or copying of this email is > strictly prohibited. If you received this email in error, please > immediately delete it from your system and notify the originator. Your > cooperation is appreciated.