Re: Require passphrase on private key to log on

From: Jacob Nevins (jacobn@chiark.greenend.org.uk)
Date: 07/16/02 

From: Jacob Nevins <jacobn@chiark.greenend.org.uk>
Date: 16 Jul 2002 16:11:38 +0100 (BST)

Joseph E. Mainusch <joegoogle@mainusch.net> writes:
>I've been trying to figure out a way to require that users who log on
>to the server via ssh using public key authentication have a
>passphrase on their key.

If you're using OpenSSH, I think you'd be better off setting up your
server to require both pubkey and password authentication, if
possible.

(I believe ssh.com's offering can do this. For discussion of doing
this with OpenSSH, including a patch, see the thread starting here:
<http://groups.google.co.uk/groups?hl=en&lr=&ie=UTF-8&oe=UTF-8&selm=pan.2002.05.31.18.19.30.174488.3781%40polybus.com>)

Relevant Pages

  • RE: make x.509 certificate authentication work with ssh
    ... I'm aware of two patches for OpenSSH ... I have ssh server on UNIX ---openssh 3.5p1 and ssh client on window or unix ... but not public key authentication with x.509 certificate. ...
    (SSH)
  • Re: How do I configure user/host authentication...?
    ... I used ssh-keygen to generate a key without a passphrase ... which I placed in the target server's authorized_keys ... that's what public key authentication is for. ... > Copy id_dsa.pub over to the server and put it into the ...
    (comp.security.ssh)
  • force to use passphrase instead of password?
    ... I have used openssh for a while. ... it askes for passphrase and sometimes it asks for password even when I ... The server runs openssh-3.1p1 on redhat 6.2. ...
    (SSH)
  • Authentication to SSHd server
    ... I wanna know if it is possible to force authentication to a OpenSSH ... server by a password and by a RSA Key(With a Passphrase on it). ...
    (SSH)
  • Require passphrase on private key to log on
    ... to the server via ssh using public key authentication have a ... server to know anything about the user's passphrase. ...
    (comp.security.ssh)