openssh keys in ldap
Pekka Savola
pekkas at netcore.fi
Tue Jul 17 06:22:30 EST 2001
On Mon, 16 Jul 2001, jeff mcelroy wrote:
> How about placing the user's private keys on an ldap server and retrieving
> them with a patched ssh-add ? If the ldap connection is encrypted (ssl) and if
> we assume the ldap server is secure, Are there any obvious security issues with
> this ?
.. to curtail possible flaws, if this was done, this should only be
possible with keys which have non-NULL passphrase.
My brain keeps shouting: "Bad idea! Bad idea!" though.
--
Pekka Savola "Tell me of difficulties surmounted,
Netcore Oy not those you stumble over and fall"
Systems. Networks. Security. -- Robert Jordan: A Crown of Swords
More information about the openssh-unix-dev
mailing list