Re: openSSH, SecureCRT, RSA
From: Darren Tucker (dtucker_at_dodgy.net.au)
Date: 12/20/04
- Previous message: ov: "openSSH, SecureCRT, RSA"
- In reply to: ov: "openSSH, SecureCRT, RSA"
- Next in thread: Richard E. Silverman: "Re: openSSH, SecureCRT, RSA"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 19 Dec 2004 23:26:55 GMT
In article <9dGdndWjzJ6fYljcRVn-tw@rcn.net>, ov <ov2k@yahoo.com> wrote:
[...]
>However, anyone attempting to ssh to the openSSH server from anywhere will
>be able to gain access to the account, regardless of whether they have the
>private key.
That would be bad. Does your account have no password, and is
PermitEmptyPasswords set to yes in sshd_config?
I suspect this is the case and those clients are being permitted via the
"none" authentication.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- Previous message: ov: "openSSH, SecureCRT, RSA"
- In reply to: ov: "openSSH, SecureCRT, RSA"
- Next in thread: Richard E. Silverman: "Re: openSSH, SecureCRT, RSA"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
