Hello, I have been running ssh for some time time now however I have been using password authentication. I would now like to use RSA too. I need help on how this is done. As well I would like to have my set up such thatboth RSA and password authentication have to work before someone can login. This is simply because I provide ftp and if such a password is sniffed then it can be used to start an ssh session. However if I use RSA authentication as well then there would be another line of defence against sniffed passwords.
Hi,
I have been running ssh for some time time now however I have been using password authentication. I would now like to use RSA too. I need help on how this is done. As well I would like to have my set up such thatboth RSA
Have a look at 'man ssh-keygen'. AFAIR there is everything needed listed.
and password authentication have to work before someone can login. This is
Why this ? RSA-authentication should be enough, just because you can and should use a different password for the RSA-passphrase.
simply because I provide ftp and if such a password is sniffed then it can be used to start an ssh session. However if I use RSA authentication as
Not when you configure your sshd to only accept RSA-authentication.
well then there would be another line of defence against sniffed passwords.
This is one reason besides of the encrypted session why there is something like ssh. --- Stephan
On Sun, 27 Aug 2000 semat@wawa.eahd.or.ug wrote:
simply because I provide ftp and if such a password is sniffed then it can be used to start an ssh session. However if I use RSA authentication as
Hello, it can also be used to upload a $HOME/.ssh/authorized_keys via ftp! It's perhaps good, to provide only anonymous ftp... Cheers, Peter -- Peter Münster http://w3pm.stormloader.com/ *** Sign now: http://petition.eurolinux.org/ ***
participants (3)
-
OKDesign oHG Security Webmaster
-
Peter Münster
-
semat@wawa.eahd.or.ug