Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM

To: debian-devel@lists.debian.org
Subject: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
From: Bernd Eckenfels <lists@lina.inka.de>
Date: Sun, 11 Aug 2002 11:56:19 +0200
Message-id: <[🔎] 20020811095619.GA25537@lina.inka.de>
In-reply-to: <[🔎] 20020811084630.C9623864E@lyta.coker.com.au>
References: <[🔎] E17diLC-0000V6-00@jones.argon.org> <[🔎] 20020811062731.GA26506@stradivarius.ressukka.net> <[🔎] 20020811064350.GA18265@lina.inka.de> <[🔎] 20020811084630.C9623864E@lyta.coker.com.au>

On Sun, Aug 11, 2002 at 10:46:30AM +0200, Russell Coker wrote:
> ssh-pam makes it a bit easier for a hostile user to stuff things up and a bit 
> harder for legit users to fix things.  Also less experienced administrators 
> (most administrators?) will be unable to work this out for themselves.

well, you do not need to use the passwd function. Actually it does not make
much sense to use that at all. As long as you use it only for authorisation,
one cannot change the unix password with it.

I still dont see any use in a debconf question. I think it is enough to
place that in the config file or documentation, a place one has to read
before he can enable the function. debconf is not a interactive
documentation replacement.

Of course debconf can ask a question, if user wants to enable the auth and
passwd function or only the auth function. In that case the warning is part
of the config option, and therefore ok.

Greetings
Bernd

Reply to:

References:
- Bug#156257: ITP: libpam-ssh -- <Roderick> I didn't write it, I'm just working on it. It authenticates you by u
  - From: Roderick Schertler <roderick@argon.org>
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: ressu@ressukka.net (Sami Haahtinen)
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: Bernd Eckenfels <lists@lina.inka.de>
- Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Bug#156276: ITP: emboss -- Sequence analysis software for molecular biology
Next by Date: Re: Archive link at the end of each post?
Previous by thread: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
Next by thread: Re: Bug#156257: ITP: libpam-ssh -- SSH key authentication and single sign-on via PAM
Index(es):
- Date
- Thread