[Muscle] ssh and CAC
Jesse I Pollard - CONTRACTOR
pollard at cmf.nrl.navy.mil
Fri Oct 20 14:36:22 PDT 2006
On Fri, 20 Oct 2006, Greg Hennessy wrote:
> Is anyone aware of a version of ssh or ssh-agent so that I can
> configure that all incoming ssh connections must use a CAC?
>
None that I know of.
You also likely don't want to do that anyway.
1. a users who make a primary connection to a server.
You MIGHT be able to verify a certificate, but I don't think
you can confirm that a CAC was used...
2. That user now logged on on the remote server wants to copy
a file to a third server...
No CAC reader available on that first server... so the connection
from the first server to the second cannot be done using a CAC.
A delegated CERT generated from a CAC might be available, but no
direct CAC use is possible.
> Thanks
> Greg Hennessy
>
> _______________________________________________
> Muscle mailing list
> Muscle at lists.musclecard.com
> http://lists.drizzle.com/mailman/listinfo/muscle
>
-------------------------------------------------------------------------
Jesse I Pollard, II
Email: pollard at cmf.nrl.navy.mil
Any opinions expressed are solely my own.
More information about the Muscle
mailing list