On Wed, 17 Sep 2003, Ramil Sagum wrote: > 2003/09/17 (水) 09:26 に Gabriel L. Briones III さんは書きました: > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA1 > > 2. SSH allows for public key encryption. > > ssl also uses public key cryptography.
I should have corrected this when i first saw it. It was a typo. Anyone familiar with what i meant to say would have flagged that down immediately as an error. It should have read: SSH allows for public key *authentication*. Which actually means that you need not have a password in order to log in. You just need to have a a predefined, shared key between two sites in order for a successful authentication to occur. Of course SSL has public keys, because SSH uses the SSL libraries extensively. > > Does telnetd + ssl allow this? > > No. Why is this > > important? Because through this feature you can configure > > servers to authenticate connections via various means as > > long as you have with you the correct key. You can store, > > for instance, your keys in a USB flash drive, and have a > > server log you on only if it can access your key in the > > flash drive. > > it would be (architecturally) easy to configure telnetd+ssl to do so. Yes, and you could also configure applications like perl and vi to do the same. But why bother and do that at all when SSH is already there. > now i know i need to properly label "hirits" in this list > > <incoming hirit> > I think telnet+ssl wins at the moment. hehe. > </incoming hirit> Real sysadmins with extensive experience in network security know that it is an ongoing process and not simply a selection of what programs to use. Your pot-shot at the information i provided not only degraded its value to those who would like to learn from what i said, it also misleads the readers as to the viability SSH is as a solution to network security. > LIGHTEN UP! Please the next time you poke humor into an otherwise serious topic, think twice. This is not a laughing matter. -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
