A practical walkthrough of building interactive SSH applications using OpenSSH's authentication hooks. Covers three server-side interception points: overriding the login shell, using the `command` option in `authorized_keys`, and using `AuthorizedKeysCommand` in `sshd_config` to dynamically generate authorization responses. Illustrated with real code from builds.sr.ht, showing how incoming SSH connections are authenticated against a key database, then routed to either connect users to a build VM shell or tail build logs in real time.
Sort: