two factor authentication
Darren Tucker
dtucker at zip.com.au
Sun Jul 23 10:16:12 EST 2006
jacob martinson wrote:
> Are there any plans on the table to add native support for two-factor
> authentication, such as password *and* public key?
Answering the second part first, yes, it's an open enhancement request
(http://bugzilla.mindrot.org/show_bug.cgi?id=983).
Going back to the first part: while requiring both password and
public-key would probably improve security, personally I think the
private key is another instance of "something you know" (although with
the useful property of being able to prove you know it without
disclosing it) since it can be copied, printed out, emailed...
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list