[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Re: Re: Regarding Authentication
From: |
Noel Yap |
Subject: |
Re: Re: Re: Regarding Authentication |
Date: |
Sun, 26 May 2002 17:20:55 -0700 (PDT) |
--- Rohan Bairat <address@hidden> wrote:
> Hi
> But if i am using keys then i need to create keys
> all over again
> if the user decides to connect from a different
> machine...
>
> ISnt it? i mean i am new to the system still please
> tell me am i
> corect?
>
> So having a centralized password management is a
> better idea??
If you create the key pair for the user:
1. you will be able to impersonate the user
2. you will have to deliver securely the user's
private key
If the user creates the key pair on a per-server
basis, the user will have to deliver securely the
private key to all the clients that need to connect to
the server.
IMHO, it is best if the user creates key pairs on a
per client or per client/server pair basis.
Assuming you're already using SSH, keys are much
better for security than passwords.
This is how I see what needs to be done (assuming SSH
is already properly installed and configured):
1. User creates key pair.
2. User sends public key to you.
3. You create login account for user and install
public key.
Noel
__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com