I am currently writing a pam module which does some checks if the key stored in authorized_keys is still valid. However I cant find a possiblity to run the module before the public key authentication of openSSH itself takes place. Is anybody aware of a method to accomblish that?
When public key authentication is used, PAM authentication is never called.
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.