Solaris 8 x86 rsa pubkey auth problem

Darren Tucker dtucker at
Thu May 4 18:11:35 EST 2006

On Thu, May 04, 2006 at 09:48:57AM +0200, Peter Stuge wrote:
> If ssh didn't read the public key in (2) the user would have to enter
> the passphrase for any and all private keys available to ssh, not
> just the one that would be used for actually authenticating the user.

It's faster, too.

Without it, you would also have to perform a sign (on the client) and
verify (on the server) which is relatively expensive.  The "will you
accept the key with this fingerprint?" operation is a lot cheaper than
sign+verify (remember, the client might try a number of keys).

Darren Tucker (dtucker at
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

More information about the openssh-unix-dev mailing list