[CentOS] ultrasecure sshd server

Fri Jun 10 04:18:40 UTC 2011
Eero Volotinen <eero.volotinen at iki.fi>

2011/6/10 Eero Volotinen <eero.volotinen at iki.fi>:
> 2011/6/10 Rainer Duffner <rainer at ultra-secure.de>:
>>
>> Am 10.06.2011 um 00:02 schrieb Eero Volotinen:
>>
>>>
>>> Well, some say that it's possible with pam hacks.
>>>
>>> main problem is that openssh public key does not contains expiry
>>> information (is not possible to expire public keys).
>>> it migth be possible with openssh certificates?
>>
>>
>>
>> As I understand it (following the arstechnica link, then using the
>> RequiredAuthentication keyword as a new search term) -
>> it's only impossible with openssh.
>
> So, this requires ssh.com (tectia) client and server? commercial version?
>
> --
> Eero
>

Looks like there is patch for openssh:

https://bugzilla.mindrot.org/show_bug.cgi?id=983

--
Eero