Mailinglist Archive: opensuse-security (601 mails)
| < Previous | Next > |
AW: [suse-security] ssh
- From: "OKDesign oHG Security Webmaster" <security@xxxxxxxxxxx>
- Date: Sun, 27 Aug 2000 18:10:17 +0200
- Message-id: <BDEBIBCIOPMPINHGJKKPCEMNCCAA.security@xxxxxxxxxxx>
Hi,
> I have been running ssh for some time time now however I have been using
> password authentication. I would now like to use RSA too. I need help on
> how this is done. As well I would like to have my set up such thatboth RSA
Have a look at 'man ssh-keygen'. AFAIR there is everything needed listed.
> and password authentication have to work before someone can login. This is
Why this ? RSA-authentication should be enough, just because you can and
should use a different password for the RSA-passphrase.
> simply because I provide ftp and if such a password is sniffed then it can
> be used to start an ssh session. However if I use RSA authentication as
Not when you configure your sshd to only accept RSA-authentication.
> well then there would be another line of defence against sniffed
> passwords.
This is one reason besides of the encrypted session why there is something
like ssh.
--- Stephan
> I have been running ssh for some time time now however I have been using
> password authentication. I would now like to use RSA too. I need help on
> how this is done. As well I would like to have my set up such thatboth RSA
Have a look at 'man ssh-keygen'. AFAIR there is everything needed listed.
> and password authentication have to work before someone can login. This is
Why this ? RSA-authentication should be enough, just because you can and
should use a different password for the RSA-passphrase.
> simply because I provide ftp and if such a password is sniffed then it can
> be used to start an ssh session. However if I use RSA authentication as
Not when you configure your sshd to only accept RSA-authentication.
> well then there would be another line of defence against sniffed
> passwords.
This is one reason besides of the encrypted session why there is something
like ssh.
--- Stephan
| < Previous | Next > |