Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM

To: debian-devel@lists.debian.org
Subject: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
From: Bernd Eckenfels <lists@lina.inka.de>
Date: Sun, 11 Aug 2002 08:43:50 +0200
Message-id: <[🔎] 20020811064350.GA18265@lina.inka.de>
In-reply-to: <[🔎] 20020811062731.GA26506@stradivarius.ressukka.net>
References: <[🔎] E17diLC-0000V6-00@jones.argon.org> <[🔎] pzptwqysjw.fsf@eeyore.ibcinc.com> <[🔎] 20020811045929.88C45850B@lyta.coker.com.au> <[🔎] 20020811062731.GA26506@stradivarius.ressukka.net>

On Sun, Aug 11, 2002 at 09:27:31AM +0300, Sami Haahtinen wrote:
> I argee with Russell that the package should come with a BIG warning
> sign.

well, if you have writ access to the users home you can always take over his
account. For example a trojan .bashrc. It would be a bit more easy with ssh
pam, but not much more. I do not think we should warn the user in debconf
time. But we should not enable the module on default.

Greetings
Bernd

Reply to:

Follow-Ups:
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: Carlos Laviola <claviola@debian.org>
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: Russell Coker <russell@coker.com.au>

References:
- Bug#156257: ITP: libpam-ssh -- <Roderick> I didn't write it, I'm just working on it. It authenticates you by u
  - From: Roderick Schertler <roderick@argon.org>
- Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: Roderick Schertler <roderick@argon.org>
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: Russell Coker <russell@coker.com.au>
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: ressu@ressukka.net (Sami Haahtinen)

Prev by Date: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
Next by Date: Re: ITP: zipios++ -- a small C++ library for reading zip files
Previous by thread: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
Next by thread: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
Index(es):
- Date
- Thread