Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- Additional Fields in SSH Keys
July 24, 2005, 1:53 pm
rate this thread
key, but didn't find anything of major use.
Is the key format extensible?
Specifically, is there a way to specify additional credentials?
The idea I was toying with was that it would be incredibly useful if a
key fingerprint could contain additional info such as a method for
verifying said fingerprint (such as a phone number, email address, or
Of course, such info would not be present in the case of a MITM attack,
but that in and of itself could possibly cause questions.
Just a thought. I know there's something like this in PGP, but those
keys are huge.
Re: Additional Fields in SSH Keys
No. The "ssh-dss" format just contains a DSA key. If you want
extensibility, you should use a different key format.
Or it might be present, but point to the attacker rather than to the
genuine host. It would only be useful if you had some way of being sure it
was genuine, in which case you'd end up with...
As I understand it, that's largely _because_ of all the metadata they
contain. If you want metadata, you have to put them somewhere.
- » Update password using ssh over remote server permission denied
- — Next thread in » Secure Shell Forum
- » protocol question - issue with exit-status inside unfinished data stream?
- — Newest thread in » Secure Shell Forum