libpam-ssh - Authenticate using SSH keys

Property Value
Distribution Debian 8 (Jessie)
Repository Debian Main amd64
Package name libpam-ssh
Package version 2.01
Package release 2
Package architecture amd64
Package type deb
Installed size 183 B
Download size 57.93 KB
Official Mirror
This pluggable authentication module (PAM) provides single sign-on
using secure shell (SSH) keys:
- during authentication, the user types a SSH passphrase and is authenticated
if the passphrase successfully decrypts the user's SSH private keys;
- in session phase, a ssh-agent process is started and decrypted keys are
added, and thus the user can SSH to other hosts that accept key
authentication without typing more passwords for the entire session.


Package Version Architecture Repository
libpam-ssh_2.01-2_i386.deb 2.01 i386 Debian Main
libpam-ssh - - -


Name Value
libc6 >= 2.14
libpam-runtime >= 1.0.1-6
libpam0g >=
libssl1.0.0 >= 1.0.0
multiarch-support -


Type URL
Binary Package libpam-ssh_2.01-2_amd64.deb
Source Package libpam-ssh

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install libpam-ssh deb package:
    # sudo apt-get install libpam-ssh




2014-10-23 - Jerome Benoit <>
libpam-ssh (2.01-2) unstable; urgency=medium
* Debianization:
- debian/copyright:
- lintian complains, fix;
- debian/control:
- Standards Version, bump to 3.9.6 (no change).
2014-05-31 - Jerome Benoit <>
libpam-ssh (2.01-1) unstable; urgency=low
* New upstream release:
- all non-centric Debian patches were incorporated, thanks to the
upstream maintainer Wolfgang Rosenauer <>.
* Debianization:
- debian/control:
- bump Standards Version to 3.9.5;
- Vcs-Browser field correction;
- debian/patches/*:
- adapt manpages;
- refresh;
- add gpg-signature check support;
- pam_ssh.8 manpage is now patched.
* Fix conflicting declarations as reported by goto-cc (Closes: #749726).
* Minor fixes submitted to the upstream maintainer.
2013-11-21 - Jerome Benoit <>
libpam-ssh (2.0-1) unstable; urgency=low
* New upstrean release:
- all non-centric Debian patches were incorporated, thanks to the
upstream maintainer Wolfgang Rosenauer <>;
- introduce $HOME/.ssh/session-keys.d as session counterpart of
$HOME/.ssh/login-keys.d per-user authentication key folder
inherited from Debian patches.
* Debianization:
- debian/watch, update URL path regex to consider customary
compression formats (gz,bz2,xz);
- debian/rules, upgrade to specify the ssh-agent SGID group name
effectively used in Debian (ssh);
- debian/{pam_ssh.8,README.Debian}:
- update to introduce the per-user session key folder;
- refresh and clarify (Closes: #718435).
* Minor fixes submitted to the upstream maintainer.
2013-07-14 - Jerome Benoit <>
libpam-ssh (1.98-2) unstable; urgency=low
* Set ssh-agent real GID to ssh group GID, as ssh-agent is installed
setgid wrt to the ssh group; it allows one to pass (and to honour)
environment variables otherwise discarded by glibc, as TMPDIR.
* Fix ssh-agent TMPDIR honouring, see previous enhancement; TMP is
no more honoured to stick closer to openssh approach.
* Handle inexistent per-user configuration direction for session phase
by shortcutting the process.
* Let the ssh-agent to determine the apropriate shell style; this is
now possible because the ssh-agent now possesses the user UID.
* Move silent-ssh-single-sign-on into debian/pam-configs and rename it
ssh wrt to the emerging custom.
* Revisit README.Debian and NEWS.Debian to reflect changes.
* Refresh pam_ssh manpage.
* debian/control, Vcs-* headers canonicalization.
* Slightly improve log messaging for closing sessions.
2013-05-10 - Jerome Benoit <>
libpam-ssh (1.98-1) unstable; urgency=low
* New upstream release, which obsoletes some of the previous patches.
* Update ssh-agent Debian specific starter accordingly.
* debian/control, Vcs-* headers added.
* Upload to unstable.

See Also

Package Description
libpam-sshauth_0.3.1-1+deb8u1_amd64.deb authenticate using an SSH server
libpam-sss_1.11.7-3_amd64.deb Pam module for the System Security Services Daemon
libpam-systemd_215-17+deb8u7_amd64.deb system and service manager - PAM module
libpam-tacplus_1.3.8-2_amd64.deb PAM module for using TACACS+ as an authentication service
libpam-tmpdir_0.09_amd64.deb automatic per-user temporary directories
libpam-usb_0.5.0-4_amd64.deb PAM module for authentication with removable USB block devices
libpam-winbind_4.2.14+dfsg-0+deb8u9_amd64.deb Windows domain authentication integration plugin
libpam-yubico_2.17-2_amd64.deb two-factor password and YubiKey OTP PAM module
libpam0g-dev_1.1.8-3.1+deb8u2+b1_amd64.deb Development files for PAM
libpam0g_1.1.8-3.1+deb8u2+b1_amd64.deb Pluggable Authentication Modules library
libpam4j-java-doc_1.4-2+deb8u1_all.deb Documentation for Java binding for
libpam4j-java_1.4-2+deb8u1_all.deb Java binding for
libpanel-applet-4-0_3.8.1-7+b1_amd64.deb library for GNOME Panel applets
libpanel-applet-4-dev_3.8.1-7+b1_amd64.deb library for GNOME Panel applets - development files
libpanel-applet-4-doc_3.8.1-7_all.deb library for GNOME Panel applets - documentation files