[OpenAFS] SFTP <-> AFS

Adam Megacz megacz@cs.berkeley.edu
Fri, 13 Oct 2006 15:19:57 -0700

Is there any advice out there on setting up SFTP access to AFS with
cross-realm authentication?

The idea is that you would supply user@REALMCELL as your username and
your Kerberos password as the password.  Remote users should not be
able to start interactive shell sessions or remotely execute commands.

Essentially, I'm looking for something that does for SFTP what
mod_waklog does for HTTP.  Ideally that would mean not trying to do a
setuid() to the user's PTS id, but rather just picking up and dropping

  - a

PGP/GPG: 5C9F F366 C9CF 2145 E770  B1B8 EFB1 462D A146 C380