Learn more about these different git repos.
Other Git URLs
pam_sss does not allow users named "root" to authenticate. Do the same thing for SSH by rejecting public key requests for users named "root" in sss_ssh_authorizedkeys.
owner: somebody => jcholast
Not a security issue -- someone would have to create a user named "root" on the IPA server and if someone has the power to create users on IPA server, we're busted anyway.
Honza says the patch is two lines. I think 1.9.4 makes sense.
milestone: NEEDS_TRIAGE => SSSD 1.9.4
patch: 0 => 1
status: new => assigned
resolution: => fixed
status: assigned => closed
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=886091
rhbz: => [https://bugzilla.redhat.com/show_bug.cgi?id=886091 886091]
Metadata Update from @jcholast:
- Issue assigned to jcholast
- Issue set to the milestone: SSSD 1.9.4
to comment on this ticket.