Using Steem JSON to distribute and authenticate SSH keys for OpenSSH
With a small service that follows the blockchain via steemd to pull out specific user profile attributes, and sshd
's support for AuthorizedKeysCommand
, and a set of admins who put their ssh keys in their user profile attributes, it is possible to delegate login authority for an ssh server user to a specific Steem Blockchain username.
OpenSSH can be configured to run a command viaAuthorizedKeysCommand
, which is passed a single argument (the username attempting to authenticate) which is expected to return a list of ssh public keys in the format of ~/.ssh/authorized_keys
.
This could be a client to a Steem Blockchain service that provides user profile json.
Perhaps I will prototype this in the coming weeks.
Nice, additional security is always good :)
Sounds cool :)
Nice.. How would you build trust in the server your talking to? Our ad-hock approach is to check several servers for the same result and throw a rod if anything does not match. Let me offer a worst case scenario (lol): publish the signed key changes at specific intervals even if there is no change.