Re: Re: Re: Regarding Authentication

info-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re: Re: Regarding Authentication

From:	Noel Yap
Subject:	Re: Re: Re: Regarding Authentication
Date:	Sun, 26 May 2002 17:20:55 -0700 (PDT)

--- Rohan  Bairat <address@hidden> wrote:
> Hi
> But if i am using keys then i need to create keys
> all over again 
> if the user decides to connect from a different
> machine...
> 
> ISnt it? i mean i am new to the system still please
> tell me am i 
> corect?
> 
> So having a centralized password management is a
> better idea??

If you create the key pair for the user:
1. you will be able to impersonate the user
2. you will have to deliver securely the user's
private key

If the user creates the key pair on a per-server
basis, the user will have to deliver securely the
private key to all the clients that need to connect to
the server.

IMHO, it is best if the user creates key pairs on a
per client or per client/server pair basis.

Assuming you're already using SSH, keys are much
better for security than passwords.

This is how I see what needs to be done (assuming SSH
is already properly installed and configured):
1. User creates key pair.
2. User sends public key to you.
3. You create login account for user and install
public key.

Noel

__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com

[Prev in Thread]

Current Thread

[Next in Thread]

Regarding Authentication, Rohan Bairat, 2002/05/24
- Re: Regarding Authentication, Noel Yap, 2002/05/25
- Re: Re: Re: Regarding Authentication, Noel Yap <=

Prev by Date: sylinks in fs pointing to cvs files [owned by root]
Next by Date: Cann't use lock command in WinCVS?
Previous by thread: Re: Regarding Authentication
Next by thread: cvs pserver login problem
Index(es):
- Date
- Thread