Re: [sshfs] Patch for pam_mount/password support

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Manuel Moran Vaquero wrote:
>>  I use sshfs specifically as a more secure replacement for NFS.  The
>>  correct way to handle this is not to try to hack the password mechanism,
>>  but to use encryption keys so the server never asks for the password.
> 
> I understand that this solution is only valid if your clients are not
> root. In my environment (IT teaching) I need clients to be able to get
> root without being able to access the whole /home tree. Thus, I cannot
> mount the tree as root on startup.

It should be possible to do this. Ssh (and thus sshfs) does not suffer 
from the same security problems as NFS if you setup it properly.