oss-sec mailing list archives

Re: OpenSSH key blacklisting

From: Florian Weimer <fw () deneb enyo de>
Date: Wed, 28 May 2008 17:14:22 +0200

* Tim Brown:

Maybe I've missed something, in which case, shoot me down, but why
unlike other services that make use of public key cryptography, does
OpenSSH not have use a model which supports proper authorisation and
revocation mechanisms?


I haven't seen a working revocation mechanism implemented elsewhere.
It's a very difficult problem.

Current thread:

Re: OpenSSH key blacklisting, (continued)
- - - Re: OpenSSH key blacklisting Dmitry V. Levin (May 27)
    - Re: OpenSSH key blacklisting Tim Brown (May 28)
    - Re: OpenSSH key blacklisting Sebastian Krahmer (May 28)
    - Re: OpenSSH key blacklisting Tim Brown (Jun 02)
    - Re: OpenSSH key blacklisting Sebastian Krahmer (Jun 02)
    - Re: OpenSSH key blacklisting Nathanael Hoyle (Jun 04)
    - Re: OpenSSH key blacklisting The Fungi (Jun 04)
    - Re: OpenSSH key blacklisting Nathanael Hoyle (Jun 04)
    - Re: OpenSSH key blacklisting Jonathan Smith (Jun 04)
    - Re: OpenSSH key blacklisting Nathanael Hoyle (May 28)
    - Re: OpenSSH key blacklisting Florian Weimer (May 28)
    - Re: OpenSSH key blacklisting Mike Frysinger (May 31)
- Re: OpenSSH key blacklisting Gustavo De Nardin (spuk) (May 16)
  - Re: OpenSSH key blacklisting Solar Designer (May 16)
    - Re: OpenSSH key blacklisting Gustavo De Nardin (spuk) (May 16)