Lukas Fleischer
2014-Jun-03 08:51 UTC
patch to send incoming key to AuthorizedKeysCommand via stdin
Hi, Are there any news on this? We are currently setting up a service that uses Git over SSH and a single UNIX account with public key authentication. We already have 25000 users (~10000 of which will be regularly using the service) and in order to avoid linear search on each login, it would be great to have support for looking up keys in a database. What is the status of the patch (using environment variables)? If there is anything that needs to be done to get this included into mainline, I would gladly help you with that. Regards, Lukas
Scott Duckworth
2014-Jun-03 13:25 UTC
patch to send incoming key to AuthorizedKeysCommand via stdin
On Tue, Jun 3, 2014 at 4:51 AM, Lukas Fleischer <info at cryptocrack.de> wrote:> What is the status of the patch (using environment variables)? If there > is anything that needs to be done to get this included into mainline, I > would gladly help you with that. >The patch is stable for me - we've been using it for many months with no issues. It has been posted to the openssh bugzilla database at https://bugzilla.mindrot.org/show_bug.cgi?id=2081. It is also available at https://github.com/ScottDuckworth/openssh-akcenv. If you find it useful then please reply to the list or bump the bug report to get some attention put on it so that it might be included in mainline.
Possibly Parallel Threads
- [Bug 2081] New: extend the parameters to the AuthorizedKeysCommand
- patch to send incoming key to AuthorizedKeysCommand via stdin
- patch to send incoming key to AuthorizedKeysCommand via stdin
- [Bug 1663] sshd_config: AuthorizedKeysCommand
- [Bug 2367] New: AuthorizedKeysCommand add key fingerprint as second argument