Bug#319244: Apply upstream's improved LPK-patch substitution
Hi,
I've been a great fan of the lpk-patch, too, at least until today:
The LPK-patch seems to be obsolete in the near future because a by far
more flexible, powerfull and even smaller patch has been discussed
upstream and already been published within upstream's bugzilla.
Related upstream discussion can be accessed here:
http://marc.info/?l=openssh-unix-dev&m=127617868901534&w=2
The patch against 5.8p2 is published here:
https://bugzilla.mindrot.org/show_bug.cgi?id=1663
And last but not least:
"This feature is included in last releases of Fedora and RHEL6
products." (stated here:
https://bugzilla.mindrot.org/show_bug.cgi?id=1663#c18)
In my opinion the chances seem to be quite good that this patch (or at
least its principle) will be integrated into upstream's release and
there is no need for lpk in the future any more.
Compared to lpk, the AuthorizedKeysCommand is not just limited to ldap
comunication but can also lookup public keys using sql for example...
As the latest fedora and rhel release do already ship with this small
patch applied, let me please suggest to add this upstream-patch to
openssh-server's "debian/rules/patches" directory, too.
Thank you very much in advance!
Cheers
Dora
Reply to: