Bug 1764 - Allow AuthorizedKeysFile in Match
Summary: Allow AuthorizedKeysFile in Match
Status: CLOSED FIXED
Alias: None
Product: Portable OpenSSH
Classification: Unclassified
Component: sshd (show other bugs)
Version: -current
Hardware: All All
: P2 enhancement
Assignee: Assigned to nobody
URL:
Keywords:
Depends on:
Blocks: V_5_6
  Show dependency treegraph
 
Reported: 2010-04-28 18:38 EST by Damien Miller
Modified: 2011-01-24 12:33 EST (History)
0 users

See Also:


Attachments
/home/djm/more-match.diff (2.97 KB, patch)
2010-06-18 10:37 EST, Damien Miller
no flags Details | Diff
/home/djm/more-match.diff (2.97 KB, patch)
2010-06-18 10:38 EST, Damien Miller
dtucker: ok+
Details | Diff
Also update the list of options that work with Match in sshd_config(5) (3.67 KB, patch)
2010-06-19 04:48 EST, Iain Morgan
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Damien Miller 2010-04-28 18:38:21 EST
Setting "AuthorizedKeysFile /dev/null" is a handy way to disable public keys while leaving centrally-specified certificate keys active. Unfortunately it isn't supported by Match.
Comment 1 Damien Miller 2010-06-18 10:37:45 EST
Created attachment 1862 [details]
/home/djm/more-match.diff

Add more options to match, including AuthorizedKeysFile
Comment 2 Damien Miller 2010-06-18 10:38:03 EST
Created attachment 1863 [details]
/home/djm/more-match.diff

Add more options to match, including AuthorizedKeysFile
Comment 3 Iain Morgan 2010-06-19 04:48:53 EST
Created attachment 1876 [details]
Also update the list of options that work with Match in sshd_config(5)

As an aside, I wonder if it would be better to list the options that
work with Match one-per-line, as is done for the description of the -o
switch in ssh(1). That seems more readable to me.
Comment 4 Damien Miller 2010-06-22 14:23:13 EST
applied - thanks. This will be in openssh-5.6.
Comment 5 Damien Miller 2011-01-24 12:33:35 EST
Move resolved bugs to CLOSED after 5.7 release