2011/6/10 Devin Reade g...@gno.org:
--On Friday, June 10, 2011 08:55:47 PM +0200 Ljubomir Ljubojevic
off...@plnet.rs wrote:
Devin Reade wrote:
Another option that you might want to look at is putting up an OpenBSD
gateway running authpf (see http://www.openbsd.org/faq/pf/authpf.html).
On 6/10/11 10:48 AM, Eero Volotinen wrote:
2011/6/10 Les Mikeselllesmikes...@gmail.com:
On 6/10/2011 3:35 AM, Ljubomir Ljubojevic wrote:
Robert Spangler wrote:
On Thursday 09 June 2011 17:34, the following was written:
How to configure sshd to required both ssh public key and user
On 06/09/11 10:53 PM, Eero Volotinen wrote:
2011/6/10 John R Piercepie...@hogranch.com:
On 06/09/11 8:59 PM, Eero Volotinen wrote:
This is not same case, I need publickey and normal password
authentication. not password protected privatekey.
I've not heard of *any* SSH system that worked that
Robert Spangler wrote:
On Thursday 09 June 2011 17:34, the following was written:
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
Have you thought about securing your ssh keys with a pasword? I do that here
so if
Not really. My view is so he can authenticate from his own PC without
the need to type the password, but if he is on someone else's system he
whould use regular password. That is what I would like to be able to do.
That is possible for the root-Account. You can allow sshd to log you in
as root
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
If you want 2 factor authentication, you can add yubikeys. They are little
usb dongle that provides one-time-password. And the server-side for those is
open-source if you
Markus Falb wrote:
On 10.6.2011 10:35, Ljubomir Ljubojevic wrote:
Robert Spangler wrote:
On Thursday 09 June 2011 17:34, the following was written:
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
Have you thought about
2011/6/10 Nicolas Ross rossnick-li...@cybercat.ca:
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
If you want 2 factor authentication, you can add yubikeys. They are little
usb dongle that provides one-time-password. And
On 6/10/2011 3:35 AM, Ljubomir Ljubojevic wrote:
Robert Spangler wrote:
On Thursday 09 June 2011 17:34, the following was written:
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
Have you thought about securing your
2011/6/10 Les Mikesell lesmikes...@gmail.com:
On 6/10/2011 3:35 AM, Ljubomir Ljubojevic wrote:
Robert Spangler wrote:
On Thursday 09 June 2011 17:34, the following was written:
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my
Another option that you might want to look at is putting up an OpenBSD
gateway running authpf (see http://www.openbsd.org/faq/pf/authpf.html).
The model there is an outside user has to open up an ssh shell
to the authpf gateway before they are allowed to access services
inside the network. If
If you want 2 factor authentication, you can add yubikeys. They are
little
usb dongle that provides one-time-password. And the server-side for those
is
open-source if you don't want to use their authentication servers. And
they
are relatively cheap.
We use these here on our border
Devin Reade wrote:
Another option that you might want to look at is putting up an OpenBSD
gateway running authpf (see http://www.openbsd.org/faq/pf/authpf.html).
The model there is an outside user has to open up an ssh shell
to the authpf gateway before they are allowed to access services
Les Mikesell wrote:
That's just normal behavior when both are enabled. If the key works,
you don't get the password prompt. But even in the 'ultrasecure'
scenario of requiring both, do you really want people typing their
passwords on equipment that might have a keylogger running?
One
On Jun 10, 2011, at 12:04 PM, Ljubomir Ljubojevic wrote:
Les Mikesell wrote:
That's just normal behavior when both are enabled. If the key works,
you don't get the password prompt. But even in the 'ultrasecure'
scenario of requiring both, do you really want people typing their
On 6/10/2011 2:09 PM, Craig White wrote:
On Jun 10, 2011, at 12:04 PM, Ljubomir Ljubojevic wrote:
Les Mikesell wrote:
That's just normal behavior when both are enabled. If the key works,
you don't get the password prompt. But even in the 'ultrasecure'
scenario of requiring both, do you
--On Friday, June 10, 2011 08:55:47 PM +0200 Ljubomir Ljubojevic
off...@plnet.rs wrote:
Devin Reade wrote:
Another option that you might want to look at is putting up an OpenBSD
gateway running authpf (see http://www.openbsd.org/faq/pf/authpf.html).
[snip]
That is not something to strive for.
Hi,
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
--
Eero
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Am 09.06.2011 um 23:34 schrieb Eero Volotinen:
Hi,
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
--
Eero
___
CentOS mailing list
CentOS@centos.org
2011/6/10 Rainer Duffner rai...@ultra-secure.de:
Am 09.06.2011 um 23:34 schrieb Eero Volotinen:
Hi,
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
--
Eero
___
CentOS
Am 10.06.2011 um 00:02 schrieb Eero Volotinen:
Well, some say that it's possible with pam hacks.
main problem is that openssh public key does not contains expiry
information (is not possible to expire public keys).
it migth be possible with openssh certificates?
As I understand it
At Fri, 10 Jun 2011 00:34:06 +0300 CentOS mailing list centos@centos.org
wrote:
Hi,
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
Just require a ssh public key AND require that public keys be created
with a
On Thursday 09 June 2011 17:34, the following was written:
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
Have you thought about securing your ssh keys with a pasword? I do that here
so if someone would happen to get a
On Thu, Jun 09, 2011 at 08:53:30PM -0400, Robert Heller wrote:
Just require a ssh public key AND require that public keys be created
with a passphrase.
Is this enforceable if you don't have access to users' private keys?
(e.g., they are on servers not under your control)
--keith
--
2011/6/10 Robert Heller hel...@deepsoft.com:
At Fri, 10 Jun 2011 00:34:06 +0300 CentOS mailing list centos@centos.org
wrote:
Hi,
How to configure sshd to required both ssh public key and user
password also? yes, stupid, but required on my setup..
Just require a ssh public key AND
2011/6/10 Rainer Duffner rai...@ultra-secure.de:
Am 10.06.2011 um 00:02 schrieb Eero Volotinen:
Well, some say that it's possible with pam hacks.
main problem is that openssh public key does not contains expiry
information (is not possible to expire public keys).
it migth be possible with
2011/6/10 Eero Volotinen eero.voloti...@iki.fi:
2011/6/10 Rainer Duffner rai...@ultra-secure.de:
Am 10.06.2011 um 00:02 schrieb Eero Volotinen:
Well, some say that it's possible with pam hacks.
main problem is that openssh public key does not contains expiry
information (is not possible
On 6/10/11, Eero Volotinen eero.voloti...@iki.fi wrote:
This is not same case, I need publickey and normal password
authentication. not password protected privatekey.
How about using the ForceCommand described here
https://calomel.org/openssh.html to add a second layer of
authentication. In his
On 06/09/11 8:59 PM, Eero Volotinen wrote:
This is not same case, I need publickey and normal password
authentication. not password protected privatekey.
I've not heard of *any* SSH system that worked that way, its key or
password, not and, i don't think the ssh protocol supports stacking auth
2011/6/10 John R Pierce pie...@hogranch.com:
On 06/09/11 8:59 PM, Eero Volotinen wrote:
This is not same case, I need publickey and normal password
authentication. not password protected privatekey.
I've not heard of *any* SSH system that worked that way, its key or
password, not and, i
30 matches
Mail list logo
