openssh-SNAP-20001016
Gert Doering
gert at greenie.muc.de
Sat Oct 28 11:21:06 EST 2000
Hi,
On Fri, Oct 27, 2000 at 07:02:55PM +0200, Markus Friedl wrote:
> On Fri, Oct 27, 2000 at 05:20:35PM +0200, Gert Doering wrote:
> > -> so it seems sshd SNAP-20001016 doesn't even offer rhosts
> > authentication, no? (same client machine, same call to ssh, except
> > the second one has "ssh -p 6022 ...")
>
> for rhosts+rsa server port has to be <1024.
Why? I might see some reasoning (caution against rogue servers), but I'd
see "password authentication" as a worse risk than proving that you have a
certain private key.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert.doering at physik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list