|
|
|
|
|
|
by 1_player
4219 days ago
|
|
|
The AuthorizedKeysCommand script is invoked with the user name of the connecting user, which isn't enough to do a database lookup, as, for example, on GitHub all incoming connections are from user git. The patch basically makes OpenSSH send the incoming user key to the script's stdin, and from the key it's trivial to match it against a user. Here's a similar patch with the same purpose: https://github.com/norbauer/openssh-for-git |
|
|