Once upon a time, Havoc Pennington <hp@xxxxxxxxxx> said: > Rather than the old XSECURITY extension we're looking at an > SELinux-style approach that the NSA guys are working on, essentially > changes all the hardcoded XSECURITY checks in the server into callouts > to a configurable policy. This sounds like a Linux (or Linux with SELinux enabled) specific thing. Will it integrate okay with non-Linux OpenSSH? -- Chris Adams <cmadams@xxxxxxxxxx> Systems and Network Administrator - HiWAAY Internet Services I don't speak for anybody but myself - that's enough trouble.