* [gentoo-dev] News item review: OpenSSH LDAP support
@ 2018-08-03 19:07 Thomas Deutschmann
2018-08-06 23:00 ` Peter Stuge
` (2 more replies)
0 siblings, 3 replies; 5+ messages in thread
From: Thomas Deutschmann @ 2018-08-03 19:07 UTC (permalink / raw
To: gentoo-dev; +Cc: pr, base-system
[-- Attachment #1.1: Type: text/plain, Size: 1076 bytes --]
Hello everyone,
please review the following news item. The 'xx'-es will be replaced with
the publication date.
---
Title: OpenSSH LDAP support
Author: Thomas Deutschmann <whissi@gentoo.org>
Posted: 2018-08-xx
Revision: 1
News-Item-Format: 2.0
Display-If-Installed: net-misc/openssh
When your sshd authenticates against LDAP, you have to migrate your
current setup to a new one using sshd's "AuthorizedKeysCommand" option and
use a wrapper provided by packages like the new sys-auth/ssh-ldap-pubkey
because beginning with net-misc/openssh-7.7_p1, deprecated OpenSSH-LPK
patch set no longer applies.
We have created a short migration guide in the Wiki [1] for more details.
[1] https://wiki.gentoo.org/wiki/SSH/LDAP_migration
---
sys-auth/ssh-ldap-pubkey isn't yet available in Gentoo repository.
We will publish together with the merge of PR 9400 [1].
See also:
=========
[1] https://github.com/gentoo/gentoo/pull/9400
--
Regards,
Thomas Deutschmann / Gentoo Linux Developer
C4DD 695F A713 8F24 2AA1 5638 5849 7EE5 1D5D 74A5
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 981 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [gentoo-dev] News item review: OpenSSH LDAP support
2018-08-03 19:07 [gentoo-dev] News item review: OpenSSH LDAP support Thomas Deutschmann
@ 2018-08-06 23:00 ` Peter Stuge
2018-08-06 23:39 ` [gentoo-dev] Re: News item review v2: Migration required for OpenSSH with LDAP Thomas Deutschmann
2018-08-06 23:44 ` [gentoo-dev] Re: News item review v3: " Thomas Deutschmann
2 siblings, 0 replies; 5+ messages in thread
From: Peter Stuge @ 2018-08-06 23:00 UTC (permalink / raw
To: Thomas Deutschmann; +Cc: gentoo-dev, pr, base-system
Hi Thomas, I suggest some improvements..
Thomas Deutschmann wrote:
> Title: OpenSSH LDAP support
Perhaps qualify this a bit, e.g. "Migration required for OpenSSH with LDAP"
> When your sshd authenticates against LDAP, you have to migrate your
s,When,If,
> current setup to a new one using sshd's "AuthorizedKeysCommand" option and
> use
s, use,,
> a wrapper provided by packages like the new sys-auth/ssh-ldap-pubkey
> because beginning with net-misc/openssh-7.7_p1, deprecated OpenSSH-LPK
> patch set no longer applies.
Maybe "because beginning with net-misc/openssh-7.7_p1 the OpenSSH-LPK
patch set is deprecated and no longer applies."
Thanks a lot!
//Peter
^ permalink raw reply [flat|nested] 5+ messages in thread
* [gentoo-dev] Re: News item review v2: Migration required for OpenSSH with LDAP
2018-08-03 19:07 [gentoo-dev] News item review: OpenSSH LDAP support Thomas Deutschmann
2018-08-06 23:00 ` Peter Stuge
@ 2018-08-06 23:39 ` Thomas Deutschmann
2018-08-06 23:44 ` [gentoo-dev] Re: News item review v3: " Thomas Deutschmann
2 siblings, 0 replies; 5+ messages in thread
From: Thomas Deutschmann @ 2018-08-06 23:39 UTC (permalink / raw
To: gentoo-dev
[-- Attachment #1.1: Type: text/plain, Size: 896 bytes --]
Changes:
* Incorporated suggestions by Peter Stuge
* Package sys-auth/sakcl added
---
Title: Migration required for OpenSSH with LDAP
Author: Thomas Deutschmann <whissi@gentoo.org>
Posted: 2018-08-xx
Revision: 1
News-Item-Format: 2.0
Display-If-Installed: net-misc/openssh
If your sshd authenticates against LDAP, you have to migrate your
current setup to a new one using sshd's "AuthorizedKeysCommand" option and
a wrapper provided by packages like the new sys-auth/ssh-ldap-pubkey or
sys-auth/sakcl because beginning with net-misc/openssh-7.7_p1, deprecated
OpenSSH-LPK patch set is deprecated and no longer applies.
We have created a short migration guide in the Wiki [1] for more details.
[1] https://wiki.gentoo.org/wiki/SSH/LDAP_migration
---
--
Regards,
Thomas Deutschmann / Gentoo Linux Developer
C4DD 695F A713 8F24 2AA1 5638 5849 7EE5 1D5D 74A5
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 981 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* [gentoo-dev] Re: News item review v3: Migration required for OpenSSH with LDAP
2018-08-03 19:07 [gentoo-dev] News item review: OpenSSH LDAP support Thomas Deutschmann
2018-08-06 23:00 ` Peter Stuge
2018-08-06 23:39 ` [gentoo-dev] Re: News item review v2: Migration required for OpenSSH with LDAP Thomas Deutschmann
@ 2018-08-06 23:44 ` Thomas Deutschmann
2018-08-07 21:22 ` Thomas Deutschmann
2 siblings, 1 reply; 5+ messages in thread
From: Thomas Deutschmann @ 2018-08-06 23:44 UTC (permalink / raw
To: gentoo-dev
[-- Attachment #1.1: Type: text/plain, Size: 915 bytes --]
Changes:
* Incorporated suggestions by Peter Stuge
* Package sys-auth/sakcl added
* Last sentence corrected
---
Title: Migration required for OpenSSH with LDAP
Author: Thomas Deutschmann <whissi@gentoo.org>
Posted: 2018-08-xx
Revision: 1
News-Item-Format: 2.0
Display-If-Installed: net-misc/openssh
If your sshd authenticates against LDAP, you have to migrate your
current setup to a new one using sshd's "AuthorizedKeysCommand" option and
a wrapper provided by packages like the new sys-auth/ssh-ldap-pubkey or
sys-auth/sakcl because beginning with net-misc/openssh-7.7_p1, OpenSSH-LPK
patch set is deprecated and no longer applies.
We have created a short migration guide in the Wiki [1] for more details.
[1] https://wiki.gentoo.org/wiki/SSH/LDAP_migration
---
--
Regards,
Thomas Deutschmann / Gentoo Linux Developer
C4DD 695F A713 8F24 2AA1 5638 5849 7EE5 1D5D 74A5
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 981 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* [gentoo-dev] Re: News item review v3: Migration required for OpenSSH with LDAP
2018-08-06 23:44 ` [gentoo-dev] Re: News item review v3: " Thomas Deutschmann
@ 2018-08-07 21:22 ` Thomas Deutschmann
0 siblings, 0 replies; 5+ messages in thread
From: Thomas Deutschmann @ 2018-08-07 21:22 UTC (permalink / raw
To: gentoo-dev
[-- Attachment #1.1: Type: text/plain, Size: 882 bytes --]
On 2018-08-07 01:44, Thomas Deutschmann wrote:
> Title: Migration required for OpenSSH with LDAP
> Author: Thomas Deutschmann <whissi@gentoo.org>
> Posted: 2018-08-xx
> Revision: 1
> News-Item-Format: 2.0
> Display-If-Installed: net-misc/openssh
>
> If your sshd authenticates against LDAP, you have to migrate your
> current setup to a new one using sshd's "AuthorizedKeysCommand" option and
> a wrapper provided by packages like the new sys-auth/ssh-ldap-pubkey or
> sys-auth/sakcl because beginning with net-misc/openssh-7.7_p1, OpenSSH-LPK
> patch set is deprecated and no longer applies.
>
> We have created a short migration guide in the Wiki [1] for more details.
>
>
> [1] https://wiki.gentoo.org/wiki/SSH/LDAP_migration
Committed.
--
Regards,
Thomas Deutschmann / Gentoo Linux Developer
C4DD 695F A713 8F24 2AA1 5638 5849 7EE5 1D5D 74A5
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 981 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2018-08-07 21:22 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2018-08-03 19:07 [gentoo-dev] News item review: OpenSSH LDAP support Thomas Deutschmann
2018-08-06 23:00 ` Peter Stuge
2018-08-06 23:39 ` [gentoo-dev] Re: News item review v2: Migration required for OpenSSH with LDAP Thomas Deutschmann
2018-08-06 23:44 ` [gentoo-dev] Re: News item review v3: " Thomas Deutschmann
2018-08-07 21:22 ` Thomas Deutschmann
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox