RE: PKI for secure authentication

Shay,

I've inquired on the list before and couldn't come up with any plans to incorporate any particular X.509 functionality into the code for OpenSSH.

However, I'm aware of two patches for OpenSSH for X.509:

http://satva.skalasoft.com/~rumen/openssh/ http://www.ncsa.uiuc.edu/Divisions/ACES/GSI/openssh/

I've had most luck with NCSA's GSI in standalone (without complete grid security). They just came out with 1.8 and it seems fairly mature. If you need additional doc let me know.

cs

-----Original Message-----
From: Shay B. Cohen [mailto:shayc@bll.co.il] Sent: Monday, February 24, 2003 11:49 PM To: secureshell@securityfocus.com
Cc: chenm@bll.co.il
Subject: PKI for secure authentication

Hello all.
 

I need information about Open SSH and it's interoperability with PKI in general and Microsoft PKI to be more specific.
 

1. Does openSSH support authenticating users using x.509 certificates? 2. Can I block unauthorized certificate to logon to the system?
 
 
Received on Wed Feb 26 19:03:44 2003

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek