Re: two factor authentication
This is a discussion on Re: two factor authentication within the OpenSSH Development forums, part of the Networking and Network Related category; On 7/22/06, Frank Cusack <fcusack@fcusack.com> wrote: > On July 22, 2006 12:15:07 ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
07-23-2006
|
|||
|
|||
Re: two factor authentication
On 7/22/06, Frank Cusack <fcusack@fcusack.com> wrote:
> On July 22, 2006 12:15:07 PM -0500 jacob martinson <martinson.jacob@gmail.com> wrote: > > Are there any plans on the table to add native support for two-factor > > authentication, such as password *and* public key? > > You can already do that. Public key is itself already 2-factor -- > something you know (the pin/passcode) and something you have (the > device on which the public key resides). Password, via PAM or BSDAUTH, > allows any two factor device the host (server) system supports. > You can? How can you configure ssh to require both successful password authentication (via the underlying OS password verification mechanisms) and public key auth before the user is allowed onto the system? Public key is only single factor. All you need to know to authenticate is the private key. There is no way to enforce passphrase protection of the private from the server's perspective so - unless I'm missing something - that isn't two-factor. _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@mindrot.org http://lists.mindrot.org/mailman/lis...enssh-unix-dev 
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT +1. The time now is 07:19 PM.
