RE: PKI for secure authentication

From: STEWARD, Curtis (Jamestown) (Curtis.Steward@goodrich.com)
Date: 02/25/03

Next message: Thomas C. Meggs: "suggestions for OpenSSH with commercial support"

Previous message: JW August III: "Links don't appear in SSH FTP Client"
Maybe in reply to: Shay B. Cohen: "PKI for secure authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "STEWARD, Curtis (Jamestown)" <Curtis.Steward@goodrich.com>
To: "'Shay B. Cohen'" <shayc@bll.co.il>
Date: Tue, 25 Feb 2003 11:53:07 -0500

Shay,

I've inquired on the list before and couldn't come up with
any plans to incorporate any particular X.509 functionality
into the code for OpenSSH.

However, I'm aware of two patches for OpenSSH
for X.509:

http://satva.skalasoft.com/~rumen/openssh/
http://www.ncsa.uiuc.edu/Divisions/ACES/GSI/openssh/

I've had most luck with NCSA's GSI in standalone (without complete
grid security). They just came out with 1.8 and it seems fairly mature.
If you need additional doc let me know.

-----Original Message-----
From: Shay B. Cohen [mailto:shayc@bll.co.il]
Sent: Monday, February 24, 2003 11:49 PM
To: secureshell@securityfocus.com
Cc: chenm@bll.co.il
Subject: PKI for secure authentication

Hello all.

I need information about Open SSH and it's interoperability with PKI in
general and Microsoft PKI to be more specific.

1. Does openSSH support authenticating users using x.509 certificates?
2. Can I block unauthorized certificate to logon to the system?

Next message: Thomas C. Meggs: "suggestions for OpenSSH with commercial support"
Previous message: JW August III: "Links don't appear in SSH FTP Client"
Maybe in reply to: Shay B. Cohen: "PKI for secure authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]