ssh -N bypasses command="command" in authorized_keys
From: Ian! D. Allen (idallen@freenet.carleton.ca)Date: 11/14/02
- Next message: Dimitri Maziuk: "Re: Why is "ssh -V" written to stderr? I want to separate output and error..."
- Previous message: : "Why is "ssh -V" written to stderr? I want to separate output and error..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: idallen@freenet.carleton.ca (Ian! D. Allen) Date: Thu, 14 Nov 2002 16:52:22 +0000 (UTC)
Linux Mandrake 8.2 - openssh-3.4p1-1.1mdk
The Linux man page for sshd says, incorrectly:
command="command"
Specifies that the command is executed whenever this key is used
for authentication.
This is wrong. The command="command" is only executed if they key is used
for authentication *and* you request that *some* remote command be run.
If you don't supply any command - command="command" is ignored.
Using "ssh -N" (do not run a remote command) allows me to connect
to this sshd server without running *any* command, thus avoiding the
"command=command" setting in the authorized_keys file.
Perhaps the behaviour should be fixed; at minimum, the man page should
be fixed. Who should I contact about that?
-- -IAN! Ian! D. Allen Ottawa, Ontario, Canada idallen@ncf.ca Home Page on the Ottawa FreeNet: http://www.ncf.ca/~aa610/ College professor at: http://www.algonquincollege.com/~alleni/ Board Member, TeleCommunities CANADA http://www.tc.ca/
- Next message: Dimitri Maziuk: "Re: Why is "ssh -V" written to stderr? I want to separate output and error..."
- Previous message: : "Why is "ssh -V" written to stderr? I want to separate output and error..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
