OpenSSH LDAP Public Key patch provides an easy way of centralizing strong user authentication by using an LDAP server for retrieving public keys instead of ~/.ssh/authorized_keys.
It uses the standard core.schema/nis.schema and strongAuthenticationUser object class, which can simplify login centralization but could introduce serious security flaws if the LDAP server is not correctly configured.
What's New in This Release:
· A memory leak has been fixed.
· A potential LDAP filter injection if a username has strange characters in it [()*] has been fixed.