Re: evaluate the best SSH client (was: Print in PuTTy)

From: Dimitri Maziuk (dima_at_127.0.0.1)
Date: 02/10/05

  • Next message: stan_jones: "Moving users Keys to new SSH server" 
    Date: Thu, 10 Feb 2005 19:16:37 +0000 (UTC)

    Richard E Silverman sez:
    ...
    > 1) Define a few simple, self-contained methods, and require a subset of
    > them, to ensure the widest possible interoperability, and
    >
    > 2) Make the protocol extensible, so that more specialized methods can be
    > implemented at will and where needed.
    >
    > When you select an SSH implementation for you Unix box, if you have a
    > requirement to use GSS or Kerberos or PAM or whatever, then select an
    > implementation that has these features. If your policy dictates that
    > publickey doesn't fit, then turn it off.

    Sure. And I still don't see how it invalidates the following:

    SSH protocol requires all implementation to support PK auth.
    Some systems do not support PK auth as a standard userauth method.
    Ergo protocol requires that on some systems SSH introduce (in order
    to support) a non-standard userauth method.

    Dima 

    -- 
... If you want to make sure you don't put a Pig in a List of airplanes and
have it fail at insertion rather than extraction, use
planelist.add((Airplane)o) instead of planelist.add(o).  It's that easy.
                                                     -- Mark 'Kamikaze' Hughes
  • Next message: stan_jones: "Moving users Keys to new SSH server"

    Relevant Pages

    • [git pull] Input updates for post-2.6.21
      ... psmouse - allow disabing certain protocol extensions ... cobalt buttons - separate device and driver registration ... wistron - add support for TravelMate 610 ... ads7846 - add support for the ads7843 touchscreen ...
      (Linux-Kernel)
    • Re: sFTP from/to z/OS
      ... IBM's Ported Tools for z/OS is fully supported by the IBM support ... IBM's port of OpenSSH, as you point out, does not include support for MVS ... (PKI certificate support, however is not part of the ssh RFC, and as such is ...
      (bit.listserv.ibm-main)
    • [NEWS] SSH Protocol Weakness Vulnerability (MITM)
      ... A weakness in the backward compatibility of the SSH Protocol has been ... SSH version 1.0) is unlikely to have the host key for the other protocol ... The SSH daemons advertise one of two major versions, ...
      (Securiteam)
    • SUMMARY: SSH 2.5.2p2 on Tru64 4.0g
      ... SSH is very particular about the permissions on the $HOME/.ssh ... Always pay particular attention the the ssh SERVERs protocol usage. ... when only using the identity.pub or rsa key. ... file on the remote host to reflect the host name without domain that was ...
      (Tru64-UNIX-Managers)
    • OT: Your favorite remote access (ssh) gadget
      ... list about what SunManagers carry around with them for quick access to ... Your responses will aid me in purchasing a gadget, ... ssh functionality is a requirement. ... Bluetooth support: ...
      (SunManagers)