private key with no passphrase detection

From: Greg Copeland <gtcopeland@xxxxxxxxx>
Date: Fri, 14 Sep 2007 12:51:59 -0700

I want to enforce private key authentication as a matter of policy. I
would like to detect private keys which do not have a passphrase. How
would I go about detecting this so I can get the user to recreate
their key?

.

Follow-Ups:
- Re: private key with no passphrase detection
  - From: Darren Dunham

Prev by Date: Re: SSH Newbie Questions: SSH and NFS-exported user homes
Next by Date: Re: private key with no passphrase detection
Previous by thread: SSH Newbie Questions: SSH and NFS-exported user homes
Next by thread: Re: private key with no passphrase detection
Index(es):
- Date
- Thread

Relevant Pages

Re: RSA ecnryption confusion
... If the private key is ... then the public key becomes *trivially* constructible. ... > It doesn't matter if p,q, are stored directly, if they are ... > If the private exponent is KNOWN, then constructing the ...
(sci.crypt)
Re: Converting SSH2-RSA key to RSA numbers
... private key and publish the other; it doesn't matter which. ... encrypt with their public key and encrypt with your private key. ... They then decrypt with your public key and decrypt with their private key. ...
(comp.security.ssh)
Re: cant get sftp to work without a password in cronjob
... The private key doesn't go across the network, so surely its protection is just a matter for the end systems? ...
(comp.unix.solaris)
Re: Encryption of contents
... I did not use a private key. ... The only thing I did during the initial encryption was to use the option on the folder. ... Does it matter. ...
(microsoft.public.windowsxp.security_admin)
Re: Feature request
... >>case why can that not be send across on request in the handshake phase? ... > change his private key in any way, he could no longer be authenticated ... the passphrase is ... but the passphrase belongs to the private keyfile. ...
(comp.security.ssh)