Network Security: Detailed info on Re: Authentication to SSHd server

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Secure-Shell

[Top] [All Lists]

Re: Authentication to SSHd server

from [Lars] Network Security

[Permanent Link]

Subject:	Re: Authentication to SSHd server
Date:	Tue, 19 Feb 2008 09:51:43 +0100

Hello

Public keys doesnt work like that. The server has no clue if the
private key used had password protection or not.
You can however (I think, please correct me if i'm wrong), use pam,
and force both password (/etc/passwd) local password, AND only show
this password login, if an valid key is used.
Basicly, you use ssh-key only, and then use pam to ask for the
password later on..

--
  Lars

On Feb 15, 2008 2:08 PM, Samuel Soulard <darkmasterhalo@gmail.com> wrote:

Hi guys,

I wanna know if it is possible to force authentication to a OpenSSH
server by a password and by a RSA Key(With a Passphrase on it).  In
this manner, it would be impossible for a attacker to brute force just
the password to get credential of the SSH server.

Thanks for your help

The OpenSSH version I use is the Latest Stable Release (4.7)

--
Sam

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Authentication to SSHd server, Samuel Soulard Re: Authentication to SSHd server, Lars <= Re: Authentication to SSHd server, Robert Hajime Lanning Message not available Re: Authentication to SSHd server, Robert Hajime Lanning

Previous by Date:	Re: Authentication to SSHd server, Robert Hajime Lanning
Next by Date:	Re: SSH Key Exchange Algorithm, Hari Sekhon
Previous by Thread:	Authentication to SSHd server, Samuel Soulard
Next by Thread:	Re: Authentication to SSHd server, Robert Hajime Lanning
Indexes:	[Date] [Thread] [Top] [All Lists]