<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=US-ASCII">
<META NAME="Generator" CONTENT="MS Exchange Server version 5.5.2654.45">
<TITLE>RE: OpenSSH 3.4p1 hostbased authentication</TITLE>
</HEAD>
<BODY>
<P><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Hi Tim,</FONT>
</P>
<P><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Thanks for the information. I have gone through few posts in the archive as per your suggestion. I understand from them that populating ssh_known_hosts file with public key of client pcs comes under RhostsRSAAuthentication. We are looking to have openssh remote authentication work just with rhosts or shosts entries. Is it not possible to do that for any reason?</FONT></P>
<P><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Please correct me if I understood the concept of openssh communication wrong.</FONT>
</P>
<P><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">best regards,</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Sreedhar.</FONT>
</P>
<P><FONT SIZE=1 FACE="MS Sans Serif">----------</FONT>
<BR><B><FONT SIZE=1 FACE="MS Sans Serif">From:</FONT></B> <FONT SIZE=1 FACE="MS Sans Serif">Tim Rice[SMTP:tim@multitalents.net]</FONT>
<BR><B><FONT SIZE=1 FACE="MS Sans Serif">Sent:</FONT></B> <FONT SIZE=1 FACE="MS Sans Serif">Thursday, February 27, 2003 03:39</FONT>
<BR><B><FONT SIZE=1 FACE="MS Sans Serif">To:</FONT></B> <FONT SIZE=1 FACE="MS Sans Serif">Sreedhar_Baddigam</FONT>
<BR><B><FONT SIZE=1 FACE="MS Sans Serif">Cc:</FONT></B> <FONT SIZE=1 FACE="MS Sans Serif">openssh-unix-dev@mindrot.org</FONT>
<BR><B><FONT SIZE=1 FACE="MS Sans Serif">Subject:</FONT></B> <FONT SIZE=1 FACE="MS Sans Serif">Re: OpenSSH 3.4p1 hostbased authentication</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">On Thu, 27 Feb 2003, Sreedhar_Baddigam wrote:</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">> Hi,</FONT>
<BR><FONT SIZE=2 FACE="Arial">> </FONT>
<BR><FONT SIZE=2 FACE="Arial">> We want to use Hostbased Authentication in OpenSSH 3.4p1 completely based on</FONT>
<BR><FONT SIZE=2 FACE="Arial">> rhosts or shosts. Don't want to have any keys exchange between server and</FONT>
<BR><FONT SIZE=2 FACE="Arial">> client.</FONT>
<BR><FONT SIZE=2 FACE="Arial">[snip]</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">You will need to populate ssh_known_hosts with the other server's </FONT>
<BR><FONT SIZE=2 FACE="Arial">public keys for Hostbased Authentication to work.</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">For further discussion check the archives around Jul 2002</FONT>
<BR><FONT SIZE=2 FACE="Arial">with Subject: Re: OpenSSH 3.4p1 hostbased auth - howto?</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">-- </FONT>
<BR><FONT SIZE=2 FACE="Arial">Tim Rice Multitalents (707) 887-1469</FONT>
<BR><FONT SIZE=2 FACE="Arial">tim@multitalents.net</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">************************************************************************** </FONT>
<BR><FONT SIZE=2 FACE="Arial">This email (including any attachments) is intended for the sole use of the intended recipient/s and may contain material that is CONFIDENTIAL AND PRIVATE COMPANY INFORMATION. Any review or reliance by others or copying or distribution or forwarding of any or all of the contents in this message is STRICTLY PROHIBITED. If you are not the intended recipient, please contact the sender by email and delete all copies; your cooperation in this regard is appreciated.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">**************************************************************************</FONT>
</P>
</BODY>
</HTML>