OpenSSH PKI support coming soon

This project looks very promising and will probably be useful even at small sites.

ADVERTISEMENTS

In cryptography, a public key infrastructure (PKI) is an arrangement that provides for trusted third party vetting of, and vouching for, user identities. It also allows binding of public keys to users. This is usually carried out by software at a central location together with other coordinated software at distributed locations. The public keys are typically in certificates.

Most enterprise-scale PKI systems rely on certificate chains to establish a party’s identity, as a certificate may have been issued by a certificate authority computer whose ‘legitimacy’ is established for such purposes by a certificate issued by a higher-level certificate authority, and so on. You may have use PKI in everyday, common examples are:
=> OpenGPG – Encryption and/or sender authentication of Email messages
=> Smart card logon
=> XML Signature for Encryption and/or authentication of documents etc

OpenBSD journal reporting that Daniel Hartmeier recently submitted to the OpenBSD tech mailing list a very interesting addition to OpenSSH, a PKI whose goal is to simplify host and user key administration.

( Via OpenBSD journal )

🐧 Get the latest tutorials on SysAdmin, Linux/Unix, Open Source & DevOps topics via:
CategoryList of Unix and Linux commands
File Managementcat
FirewallCentOS 8 OpenSUSE RHEL 8 Ubuntu 16.04 Ubuntu 18.04 Ubuntu 20.04
Network Utilitiesdig host ip nmap
OpenVPNCentOS 7 CentOS 8 Debian 10 Debian 8/9 Ubuntu 18.04 Ubuntu 20.04
Package Managerapk apt
Processes Managementbg chroot cron disown fg jobs killall kill pidof pstree pwdx time
Searchinggrep whereis which
User Informationgroups id lastcomm last lid/libuser-lid logname members users whoami who w
WireGuard VPNCentOS 8 Debian 10 Firewall Ubuntu 20.04

ADVERTISEMENTS
1 comment… add one
  • Mark Seaborn Feb 9, 2007 @ 15:30

    When is the target date to release openSSH with PKI support. I would be very interested in trying it out.

Leave a Reply

Your email address will not be published. Required fields are marked *

Use HTML <pre>...</pre>, <code>...</code> and <kbd>...</kbd> for code samples.