http://bugzilla.novell.com/show_bug.cgi?id=933810
--- Comment #2 from David Westfall ---
I do not know why the default location for pam_ssh has been changed. You would
think that it would use the same default as ssh-keygen, ssh-sdd and ssh.
ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
man ssh-add
ssh-add adds private key identities to the authentication agent, ssh-agent(1).
When run without arguments, it adds the files ~/.ssh/id_rsa, ~/.ssh/id_dsa,
~/.ssh/id_ecdsa, ~/.ssh/id_ed25519 and ~/.ssh/identity. After loading a
private key, ssh-add will try to load corresponding certificate information
from the filename obtained by appending -cert.pub to the name of the private
key file. Alternative file names can be given on the command line.
man ssh
-i identity_file
Selects a file from which the identity (private key) for public key
authentication is read. The default is ~/.ssh/identity for protocol version 1,
and ~/.ssh/id_dsa, ~/.ssh/id_ecdsa, ~/.ssh/id_ed25519 and ~/.ssh/id_rsa for
protocol version 2. Identity files may also be specified on a per-host basis
in the configuration file. It is possible to have multiple -i options (and
multiple identities specified in configuration files). ssh will also try to
load certificate information from the filename obtained by appending -cert.pub
to identity file-names.
The man page for pam_ssh does not say anything about needing a session-keys.d
directory. In fact it is kinda of old:
AUTHORS
Andrew J. Korty wrote pam_ssh. Dag-Erling Smorgrav wrote the
original OpenPAM support code. Mark R V Murray wrote the original ver-
sion of this manual page.
BSD November 26, 2001 BSD
Strange, the man page from 13.1 also dated in 2001 has keyfile argument, 13.2
does not.
keyfiles Specify the comma-separated list of files in $HOME/.ssh to check for
SSH keys. The default is “id_dsa,id_rsa,identity”.
The man page on 13.2 shows the default key location.
FILES
$HOME/.ssh/identity SSH1/OpenSSH RSA key
$HOME/.ssh/id_dsa OpenSSH DSA key
$HOME/.ssh2/id_rsa_* SSH2 RSA keys
$HOME/.ssh2/id_dsa_* SSH2 DSA keys
So, if pam_ssh has changed the default location, then the documentation does
not show it. So why has the default location been changed from where
everything else is expecting it?
Dave W
--
You are receiving this mail because:
You are on the CC list for the bug.