vlady at rila
Mar 26, 2002, 2:35 AM
Post #2 of 2
I suggest you try using your own pam_mysql for ssh authentication, because as I know ssh supports PAM but don't support NSS.
On Mon, 25 Mar 2002 17:06:20 +0100
"Bernhard Bock" <bb-mailinglists [at] gmx> wrote:
> Vladimir Terziev [vlady [at] rila] wrote:
> > How did you setup a unix a local unix account of type user [at] domain ?
> We use nss_mysql with user [at] domain in the username field.
> > Can user [at] domain login on the server console ?
> Yes, this works. Mail, FTP work too. Users with username user3 (without
> domain, only for testing) can login via ssh.
> Ian Zapczynski [ianz [at] quarterleaf] wrote:
> > What about enclosing the offending argument in quotes?
> > i.e. ssh -l 'user1 [at] domain1' www.domain1.com
> > or ssh -l "user1 [at] domain1" www.domain1.com
> That doesn't help. :-((
> While testing this proposal I found some very interesting results: If I try
> this from localhost (i.e. ssh -l 'user1 [at] domain1' www.domain1.com on the
> host www.domain1.com) it WORKS. If I try it from some other host, I get
> "illegal user".
> Here are the corresponding 2 lines from the debug log:
> debug1: do_authentication: illegal user user1
> debug1: Attempting authentication for illegal user user1.
> I still use the OpenSSH_2.9.9p2 package from SuSE, not OpenSSH 3.1.