Request for a Lockdown option
Christian Heinrich
christian.heinrich at cmlh.id.au
Thu Jul 4 07:13:13 AEST 2024
Manon,
On Thu, 4 Jul 2024 at 05:00, Manon Goo <manon.goo at dg-i.net> wrote:
> My Idea would be to have a shared secret option that the client and server would have to proof to know when initiating the Handshake. The Server or client could terminate the connection immediately when the peer does not know the secret. So in case of a security Problem the administrator could set an option for ssh and sshd like LockDownSharedSecret to a random password and share it with other Trustworthy Administrators, who are involved in fixing the problem. My ideas how to use this shared secret:
How is this different to configuring /etc/securetty and tunnelling
Telnet over SSH Port Forwarding which I don't recommend BTW?
--
Regards,
Christian Heinrich
http://cmlh.id.au/contact
More information about the openssh-unix-dev
mailing list