<div dir="ltr"><br><br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">Aaron Zauner</b> <span dir="ltr"><<a href="mailto:azet@azet.org">azet@azet.org</a>></span><br>
Date: Mon, Jan 6, 2014 at 3:27 PM<br>Subject: Re: [Ach] SSH Pubkey authentication?<br>To: Lorenz Intichar <<a href="mailto:lorenz@intichar.at">lorenz@intichar.at</a>><br><br><br>-----BEGIN PGP SIGNED MESSAGE-----<br>

Hash: SHA1<br>
<br>
Hi Lorenz,<br>
<div class="im"><br>
Lorenz Intichar wrote:<br>
> Dear List,<br>
><br>
> would you think it worth while to recommend (and/or explain) SSH<br>
> pubkey authentication in ACH, or would that be considered Off-Topic<br>
> in a crypto manual?<br>
><br>
> I´d like to propose SSH PubKey procedures (i.e Key Generation, open<br>
> SSH "PasswordAuthentication no" and PubKey Auth in IOS / ASA) as a<br>
> general security enhancement, but would like to get some opinions<br>
> about this topic (or off-topic ;-) ) first.<br>
</div>That's probably not a bad idea as long as it doesn't get too verbose.<br>
The guide is aimed at sysadmins and most probably already know what<br>
public key authentication is. A short guide would be helpful though.<br>
<br>
Feel free to write something and open a pull request on github or the<br>
mailing list.<br>
<br>
Thanks,<br>
Aaron<br>
-----BEGIN PGP SIGNATURE-----<br>
<br>
iQIcBAEBAgAGBQJSyr1gAAoJEOTbZJL9ubXVHfcP/1UiWxTuDMGsRSD5o02DNts2<br>
dvhx1+fqfDNaiDMFf11PuYwNzdADzpJxX1gDSfd3hEAJcCyCsMddcYZINaAvKkqD<br>
FaFViFVS95KyUu/XL7YIdnC5VJKia43EA4dkXQetXXptHcCltJgLUtN2/Oykxag7<br>
QNOni16KU+JfeYxAOlD/D6NHVogYaFlPFY2s9ds2eX3NqZgeEEObjKklCukjRiqf<br>
olrW+XoGy7wMG6OP0dQVrc0joFrCD0MVjM/829gNydkURoP/C7g8kX3tsoy3z0kL<br>
Pg9HCtdmKSw3OBX+gC6JJ9c+Asu8rcPV5DtPanu7yF3YyOioBIHpNrzptT8QphZt<br>
Bdw/gRjYrQo0lRQi+9NpkMSisMhwrby0zOCpHNpameZP7Jabp8BAZ1d7NafBddet<br>
9RIaUHCuy8rBLCQFAPhFrV7+P4Wak72hxPw5bFDsunQwkXqUDudgfFNdax2aaxL8<br>
96asNu9JsRa8h3iVxB9Vg2bnw95imlSIvi9XExSwxKlra9C55ySlc3A/TEzNYcwY<br>
2ZWzXl5OJWnP2Sun9Jd2nufBM6FOyfpNK3iNBmd1r6X1dFPQcDc4bNTlLhDvr5SB<br>
ULL7SvObwiOZ97wvgDHPN8G4pHiv7dP4uqVfpeiX0cybSYvgQcI8kz5HwqHro7Dt<br>
jXcY3u0thpZolMgoN9TY<br>
=4bks<br>
-----END PGP SIGNATURE-----<br>
</div><br></div>