- djm@cvs.openbsd.org 2012/10/30 21:29:55 [auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h] [sshd.c sshd_config sshd_config.5] new sshd_config option AuthorizedKeysCommand to support fetching authorized_keys from a command in addition to (or instead of) from the filesystem. The command is run as the target server user unless another specified via a new AuthorizedKeysCommandUser option. patch originally by jchadima AT redhat.com, reworked by me; feedback and ok markus@

commit: 09d3e1251250dcf45e5434cd474430e4ec5e8639 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Wed Oct 31 08:58:58 2012 +1100
committer: Damien Miller <djm@mindrot.org> Wed Oct 31 08:58:58 2012 +1100
tree: 674ce6528821636740dce3a32ac1634b397643c9
parent: 07daed505f1cd6a0beff4d060b588debcc1ca8c8 [diff] [blame]
diff --git a/servconf.h b/servconf.h
index 096d596..0064c9b 100644
--- a/servconf.h
+++ b/servconf.h

@@ -1,4 +1,4 @@
-/* $OpenBSD: servconf.h,v 1.103 2012/07/10 02:19:15 djm Exp $ */
+/* $OpenBSD: servconf.h,v 1.104 2012/10/30 21:29:55 djm Exp $ */
 
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -166,6 +166,8 @@
 	char   *revoked_keys_file;
 	char   *trusted_user_ca_keys;
 	char   *authorized_principals_file;
+	char   *authorized_keys_command;
+	char   *authorized_keys_command_user;
 
 	char   *version_addendum;	/* Appended to SSH banner */
 }       ServerOptions;
commit	09d3e1251250dcf45e5434cd474430e4ec5e8639	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Wed Oct 31 08:58:58 2012 +1100
committer	Damien Miller <djm@mindrot.org>	Wed Oct 31 08:58:58 2012 +1100
tree	674ce6528821636740dce3a32ac1634b397643c9
parent	07daed505f1cd6a0beff4d060b588debcc1ca8c8 [diff] [blame]