Commit 3274a311 authored by Bastien Nocera's avatar Bastien Nocera Committed by Benjamin Berg

pam: Don't ask for fingerprints for remote logins

As written in the "Linux-PAM Application Developers' Guide"
at http://www.linux-pam.org/Linux-PAM-html/adg-security-user-identity.html:
"
As a general rule, the following convention for its value can be
assumed: NULL = unknown; localhost = invoked directly from the
local system; other.place.xyz = some component of the user's
connection originates from this remote/requesting host.
"

So also exit early if the hostname isn't localhost as it should be.

Closes: #21
parent d6c4e8ba
Pipeline #54438 passed with stage
in 4 minutes and 6 seconds