[nycbug-talk] interesting OpenSSH development
Okan Demirmen
okan at demirmen.com
Thu Nov 16 13:54:38 EST 2006
On Thu 2006.11.16 at 12:44 -0500, Marc Spitzer wrote:
> On 11/16/06, Peter Wright <pete at nomadlogic.org> wrote:
> > http://thread.gmane.org/gmane.os.freebsd.current/86266/focus=86268
> >
> > I'm sure most folks on talk@ have seen this. I'm pretty excited to tell
> > you the truth. trying to properly maintain ssh key's on large clusters is
> > pain at best. beck at open obviously had some insight - I'm hoping that the
> > end product of this work is something positive (see Andre's response to
> > Bob).
> >
> > -pete
>
> Why not just use kerberos? ssh supports kerberos as does a bunch of
> other services. After all if you need to set up a server anyway why
> not set up a server for more then just ssh?
simply put, the pki-type solution allows keys as opposed to passwords.
More information about the talk
mailing list