> >> so i don't think that '*' is required. however i think that > >> running from /rc/bin/service.auth is. > > > > You can do one or the other. > > The latter should be deprecated, the former uses the Plan 9 security > model as intended. At least, that's my _opinion_.
they're not equivalent. giving none the ability to authenticate with the host's ssh key seems like a really bad idea to me. trivial attack: none could run a hacked ssheserve with a key logger. - erik
