Am Montag, 8. Dezember 2008 19:42:46 schrieb Alon Bar-Lev: > Anyway... OpenSSH developers do not accept this as they do not accept > LDAP, X.509, GSS and other features.
I thought so. thus maybe they would accept a pkcs#11 implementation, if that one did not use any external library and was quite simple (i.e. looks at rsa public/private keys only)? hmm, but maybe that isn't possible at all - if I want to ask a user for the pin for some private key, it is common to quote the subject from the certificate with the same ID as the private key. (the id numbers are not very helpfull in most cases - 45 as default for opensc for example). hmm. are there any alternatives to openssh worth looking into? Regards, Andreas _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
