[jira] [Comment Edited] (SSHD-660) Add support for authentication using signed client/server keys

Lyor Goldstein (Jira) Thu, 16 Apr 2020 00:09:26 -0700


    [ 
https://issues.apache.org/jira/browse/SSHD-660?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17084583#comment-17084583
 ]


Lyor Goldstein edited comment on SSHD-660 at 4/16/20, 7:08 AM:
---------------------------------------------------------------

{quote}
For the unit tests I don't really know how and what is best to test.. Are there 
some integration tests which I overlook? Would be the easiest to spawn a server 
and let a client ping?
{quote}
For unit testing it is enough to spawn a server and let a client ping - there 
are plenty of examples in the current code how to do this.

{quote}
I tested it against `OpenSSH_7.9p1 Debian-10+deb10u2, OpenSSL 1.1.1d  10 Sep 
2019` (default Debian Buster) and with `OpenSSH_8.1p1, LibreSSL 2.7.3` (default 
macOS) client.
{quote}

Can you provide some reference documentation how to set up these servers to 
execute this type of authentication ?


was (Author: lgoldstein):
{quote}
For the unit tests I don't really know how and what is best to test.. Are there 
some integration tests which I overlook? Would be the easiest to spawn a server 
and let a client ping?
{quote}
For unit testing it is enough to spawn a server and let a client ping - there 
are plenty of examples in the current code how to do this.

{quote}
I tested it against `OpenSSH_7.9p1 Debian-10+deb10u2, OpenSSL 1.1.1d  10 Sep 
2019` (default Debian Buster) and with `OpenSSH_8.1p1, LibreSSL 2.7.3` (default 
macOS) client.
{quote}

Can you provide some reference documentation how to set up these server to 
execute this type of authentication ?

> Add support for authentication using signed client/server keys
> --------------------------------------------------------------
>
>                 Key: SSHD-660
>                 URL: https://issues.apache.org/jira/browse/SSHD-660
>             Project: MINA SSHD
>          Issue Type: Improvement
>            Reporter: Lyor Goldstein
>            Priority: Minor
>
> Similar to _HostCertificate_ and _TrustedUserCAKeys_ configuration values - 
> see https://ef.gy/hardening-ssh



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Comment Edited] (SSHD-660) Add support for authentication using signed client/server keys

Reply via email to