Chain of trust
Michael Ströder
michael at stroeder.com
Fri Nov 16 09:47:18 AEDT 2018
On 11/15/18 7:51 PM, Manoj Ampalam wrote:
> Does OpenSSH support ssh certificate chain with trust anchored at the
> root cert? From what I have read and experimented, it does not look
> so. But looking for a confirmative answer from the experts.
If you're asking about OpenSSH certs then look into:
https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.certkeys
It says:
"Chained" certificates, where the signature key type is a certificate
type itself are NOT supported.
Ciao, Michael.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3829 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20181115/d46abd39/attachment.p7s>
More information about the openssh-unix-dev
mailing list