From: Hamish Moffatt (cstdo@axit.nl)
Date: Thu Dec 12 2002 - 23:44:25 EET
On Thu, Dec 12, 2002 at 09:27:40AM -0800, Curt Mills, WE7U wrote:
> On Thu, 12 Dec 2002, Margaret Leber wrote:
> > Hamish Moffatt wrote:
> > > Better solution: use SSH. You can have public key authentication (no
> > > cleartext passwords) without any encryption or compression.
> >
> > Is encrypting even a password permitted outside of control of space
> > stations?
>
> As I understand it, it's allowed in the U.S. for authentication
> purposes (passwords), but not for hiding the rest of the text.
> Can't speak for other countries rules.
With SSH set up for a private and public key pair, you aren't even
exchanging encrypted passwords.
The remote machine has your public key, and you have your private key.
The remote machine gives you something to encrypt using the private key
and send back to it (a challenge). If you don't have the private key it
is impossible to meet its challenge. If somebody else had the private
key they could provide the proper response too.
Hamish
-- Hamish Moffatt VK3SB <rnr.bcuvb@primorye.ru> <hidrwj@leasedline-ip66.neo.at> - To unsubscribe from this list: send the line "unsubscribe linux-hams" in the body of a message to terhi.victor@logonet.com More majordomo info at http://vger.kernel.org/majordomo-info.html
This archive was generated by hypermail 2b30 : Thu Dec 12 2002 - 23:44:42 EET