- djm@cvs.openbsd.org 2012/10/30 21:29:55

[auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h] [sshd.c sshd_config sshd_config.5] new sshd_config option AuthorizedKeysCommand to support fetching authorized_keys from a command in addition to (or instead of) from the filesystem. The command is run as the target server user unless another specified via a new AuthorizedKeysCommandUser option. patch originally by jchadima AT redhat.com, reworked by me; feedback and ok markus@
author: Damien Miller <djm@mindrot.org> 2012-10-31 08:58:58 +1100
committer: Damien Miller <djm@mindrot.org> 2012-10-31 08:58:58 +1100
commit: 09d3e1251250dcf45e5434cd474430e4ec5e8639 (patch)
tree: 674ce6528821636740dce3a32ac1634b397643c9 /auth.h
parent: 07daed505f1cd6a0beff4d060b588debcc1ca8c8 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/auth.h b/auth.h
index 0d786c4d5..063404167 100644
--- a/auth.h
+++ b/auth.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.h,v 1.69 2011/05/23 03:30:07 djm Exp $ */
+/* $OpenBSD: auth.h,v 1.70 2012/10/30 21:29:54 djm Exp $ */
 /*
 * Copyright (c) 2000 Markus Friedl.  All rights reserved.
@@ -120,6 +120,10 @@ int	 auth_rhosts_rsa_key_allowed(struct passwd *, char *, char *, Key *);
 int      hostbased_key_allowed(struct passwd *, const char *, char *, Key *);
 int      user_key_allowed(struct passwd *, Key *);
+struct stat;
+int      auth_secure_path(const char *, struct stat *, const char *, uid_t,
+    char *, size_t);
 #ifdef KRB5
 int     auth_krb5(Authctxt *authctxt, krb5_data *auth, char **client, krb5_data *);
 int     auth_krb5_tgt(Authctxt *authctxt, krb5_data *tgt);
author	Damien Miller <djm@mindrot.org>	2012-10-31 08:58:58 +1100
committer	Damien Miller <djm@mindrot.org>	2012-10-31 08:58:58 +1100
commit	09d3e1251250dcf45e5434cd474430e4ec5e8639 (patch)
tree	674ce6528821636740dce3a32ac1634b397643c9 /auth.h
parent	07daed505f1cd6a0beff4d060b588debcc1ca8c8 (diff)