- djm@cvs.openbsd.org 2012/10/30 21:29:55

[auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h] [sshd.c sshd_config sshd_config.5] new sshd_config option AuthorizedKeysCommand to support fetching authorized_keys from a command in addition to (or instead of) from the filesystem. The command is run as the target server user unless another specified via a new AuthorizedKeysCommandUser option. patch originally by jchadima AT redhat.com, reworked by me; feedback and ok markus@
author: Damien Miller <djm@mindrot.org> 2012-10-31 08:58:58 +1100
committer: Damien Miller <djm@mindrot.org> 2012-10-31 08:58:58 +1100
commit: 09d3e1251250dcf45e5434cd474430e4ec5e8639 (patch)
tree: 674ce6528821636740dce3a32ac1634b397643c9 /servconf.h
parent: 07daed505f1cd6a0beff4d060b588debcc1ca8c8 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/servconf.h b/servconf.h
index 096d596d7..0064c9bc5 100644
--- a/servconf.h
+++ b/servconf.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: servconf.h,v 1.103 2012/07/10 02:19:15 djm Exp $ */
+/* $OpenBSD: servconf.h,v 1.104 2012/10/30 21:29:55 djm Exp $ */
 /*
 * Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -166,6 +166,8 @@ typedef struct {
        char   *revoked_keys_file;
        char   *trusted_user_ca_keys;
        char   *authorized_principals_file;
+        char   *authorized_keys_command;
+        char   *authorized_keys_command_user;
        char   *version_addendum;       /* Appended to SSH banner */
 }       ServerOptions;
author	Damien Miller <djm@mindrot.org>	2012-10-31 08:58:58 +1100
committer	Damien Miller <djm@mindrot.org>	2012-10-31 08:58:58 +1100
commit	09d3e1251250dcf45e5434cd474430e4ec5e8639 (patch)
tree	674ce6528821636740dce3a32ac1634b397643c9 /servconf.h
parent	07daed505f1cd6a0beff4d060b588debcc1ca8c8 (diff)