|
|
Hi , hope someone can help me with a technical query.
I'm trying to use OPENSSH on an iSeries host ...ver Openssh-3.5p1...I;m trying
to figure out if you can use certification to authenticate the server with
OpenSSH ...I'm familiar with the usage of certificates for Server
authentication in a SSL environment but cant seem to get a definitive answer as
to if SSH supports a similar authentication process.
I'm concerned about just accepting a public key provided by a server on initial
connection without correct correct authentication of the server we have
connected to.
Or do we just have to ensure the HOST public key of the SSH private/public
pairing is sent out of bound (e.g. via email) and then verified as correct
during connection.
I've see some products that imply the public key for an SSH paring can still be
signed by a CA which would then ensure its authenticated ...but I can't figure
out how this would work in practise with SSH ...i.e how do we import the
certificate and/or the CA public key in order to be able to authenticate a
provided certificate?
Any help would be appreciated with this.
Simon Martin
Technical Infrastrucure Developer
iUT Services
Midrange & Mainframe Technology Services
Group Technology
HBoS Plc
(Ext - (7150) 22938
(DDI - 01902 302938
C�Mobile: 07818 013 763
Pendeford Business Park,
Wolverhampton.
E!External Email: SimonMartin@xxxxxxxxxxx <mailto:SimonMartin@xxxxxxxxxxx>
|
|