OpenSSH 3.4p1 hostbased authentication

Ben Lindstrom mouring at etoh.eviladmin.org
Fri Feb 28 05:13:47 EST 2003


My impression (skiming the manpages)  that .rhosts/.shosts v1 only.

So you may want to force the code into v1 mode for testing.

- Ben



On Thu, 27 Feb 2003, Sreedhar_Baddigam wrote:

> Hi Tim,
>
> Thanks for the information. I have gone through few posts in the archive as
> per your suggestion. I understand from them that populating ssh_known_hosts
> file with public key of client pcs comes under RhostsRSAAuthentication. We
> are looking to have openssh remote authentication work just with rhosts or
> shosts entries. Is it not possible to do that for any reason?
>
> Please correct me if I understood the concept of openssh communication
> wrong.
>
> best regards,
> Sreedhar.
>
> > ----------
> > From: 	Tim Rice[SMTP:tim at multitalents.net]
> > Sent: 	Thursday, February 27, 2003 03:39
> > To: 	Sreedhar_Baddigam
> > Cc: 	openssh-unix-dev at mindrot.org
> > Subject: 	Re: OpenSSH 3.4p1 hostbased authentication
> >
> > On Thu, 27 Feb 2003, Sreedhar_Baddigam wrote:
> >
> > > Hi,
> > >
> > > We want to use Hostbased Authentication in OpenSSH 3.4p1 completely
> > based on
> > > rhosts or shosts. Don't want to have any keys exchange between server
> > and
> > > client.
> > [snip]
> >
> > You will need to populate ssh_known_hosts with the other server's
> > public keys for Hostbased Authentication to work.
> >
> > For further discussion check the archives around Jul 2002
> > with Subject: Re: OpenSSH 3.4p1 hostbased auth - howto?
> >
> > --
> > Tim Rice		Multitalents	(707) 887-1469
> > tim at multitalents.net
> >
> **************************************************************************
> This email (including any attachments) is intended for the sole use of the
> intended recipient/s and may contain material that is CONFIDENTIAL AND
> PRIVATE COMPANY INFORMATION. Any review or reliance by others or copying or
> distribution or forwarding of any or all of the contents in this message is
> STRICTLY PROHIBITED. If you are not the intended recipient, please contact
> the sender by email and delete all copies; your cooperation in this regard
> is appreciated.
> **************************************************************************
>




More information about the openssh-unix-dev mailing list