From owner-freebsd-stable@FreeBSD.ORG Thu Nov 23 11:25:53 2006 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 1362716A47C for ; Thu, 23 Nov 2006 11:25:53 +0000 (UTC) (envelope-from doconnor@gsoft.com.au) Received: from cain.gsoft.com.au (cain.gsoft.com.au [203.31.81.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 05DE243D5D for ; Thu, 23 Nov 2006 11:25:17 +0000 (GMT) (envelope-from doconnor@gsoft.com.au) Received: from inchoate.gsoft.com.au (ppp144-150.lns2.adl2.internode.on.net [121.44.144.150]) (authenticated bits=0) by cain.gsoft.com.au (8.13.5/8.13.4) with ESMTP id kANBPnp0000114 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 23 Nov 2006 21:55:49 +1030 (CST) (envelope-from doconnor@gsoft.com.au) From: "Daniel O'Connor" To: freebsd-stable@freebsd.org, stefan.thurner@mb.tu-chemnitz.de Date: Thu, 23 Nov 2006 21:55:46 +1030 User-Agent: KMail/1.9.4 References: <200611230916.kAN9GJXe082669@lurza.secnetix.de> In-Reply-To: <200611230916.kAN9GJXe082669@lurza.secnetix.de> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1657623.r2N2Wd8X62"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200611232155.47893.doconnor@gsoft.com.au> X-Spam-Score: 0 () X-Scanned-By: MIMEDefang 2.57 on 203.31.81.10 Cc: Subject: Re: pam.d/sshd X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Nov 2006 11:25:53 -0000 --nextPart1657623.r2N2Wd8X62 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 23 November 2006 19:46, Oliver Fromme wrote: > Stefan Thurner wrote: > > I would like to activate ssh-agent automatically if I login > > via ssh. > > As far as I know there is no mechanism to start ssh-agent > automatically. (Someone please correct me if I'm wrong.) You're wrong :) I have all of my pam.d config files include a single system file so I can control it all in one place. I have this for auth -> # auth auth sufficient pam_opie.so no_warn no_fake_pro= mpts auth requisite pam_opieaccess.so no_warn allow_local auth sufficient pam_ssh.so auth required pam_unix.so no_warn use_first_p= ass nullok And this for session -> # session session optional pam_ssh.so want_agent session required pam_lastlog.so no_fail (the session stuff is what starts ssh-agent) =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart1657623.r2N2Wd8X62 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQBFZYU75ZPcIHs/zowRAhJ3AJoDW20t8KdzWeSKXPrh0nSzNkItNwCfbyLP 3Gbchc4KaruLb1AhprpMwVM= =w4Ij -----END PGP SIGNATURE----- --nextPart1657623.r2N2Wd8X62--