Solaris 8 x86 rsa pubkey auth problem
Darren Tucker
dtucker at zip.com.au
Thu May 4 18:11:35 EST 2006
On Thu, May 04, 2006 at 09:48:57AM +0200, Peter Stuge wrote:
> If ssh didn't read the public key in (2) the user would have to enter
> the passphrase for any and all private keys available to ssh, not
> just the one that would be used for actually authenticating the user.
It's faster, too.
Without it, you would also have to perform a sign (on the client) and
verify (on the server) which is relatively expensive. The "will you
accept the key with this fingerprint?" operation is a lot cheaper than
sign+verify (remember, the client might try a number of keys).
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list