openssh-unix-dev May 2011 archive
Main Archive Page > Month Archives  > openssh-unix-dev archives
openssh-unix-dev: Re: backdoor by authorized_keys2 leftovers

Re: backdoor by authorized_keys2 leftovers

From: Jameson Graef Rollins <jrollins_at_nospam>
Date: Wed May 11 2011 - 09:58:55 GMT
To: Damien Miller <djm@mindrot.org>, Dan Kaminsky <dan@doxpara.com>

On Wed, 11 May 2011 18:44:59 +1000 (EST), Damien Miller <djm@mindrot.org> wrote:
> > I'd document, rather than remove. I think all my systems use
> > authorized_keys2. You will end up locking users and admins out.
>
> We'll document the removal :) Really, there is no reason to have two
> files that do exactly the same thing.

Actually, there are a lot of reasons to have multiple authorized_keys
files. One user controlled and one admin controlled is just the first
thing that pops in to my head. I'm sure we can think of lots of other
reasons as well.

jamie.

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev