On Wed, Mar 05, 2008 at 08:46:36AM -0800, Edwin Goei wrote: > I am trying to set up ssh public key access on a SCM (source code > management) host but with long 32 character usernames. Ssh keys are > placed in the filesystem under a user's home directory. The sshd > server takes the login name from the ssh client to derive a path to > the authorized_keys file in the filesystem. Is this code baked into > sshd or is is part of a PAM module? From the sshd man page, it appears
It's baked into sshd, but it's configurable. See sshd_config(4). > there is a "ssh-pubkey" service name but I'm not sure what this is > for. My list of user/login accounts are in a database and I need some > way of hooking that into sshd. Any ideas? It's so you can have different account authorization policies for different SSH userauth methods. > References: http://docs.sun.com/app/docs/doc/819-2240/sshd-1m. > BTW, opensolaris.org itself provides hg over ssh but has an 8 character > username limit. The supported maximum username length (supported vis-a-vis POSIX and other standards) is 8 characters. The maximum username length if you're willing to live with ls(1)/ps(1)/... column run-ons and/or truncation is 32 characters (bytes, actually). (login(1) enforces a 32-byte limit, and utmpx truncates at 32 bytes.) Nico --
