Hi Eric.
What about using a crypted communication between
the reader and the card?
That's no help. The secret would still be on the
(untrusted) host for the ssh authentication.
Yes, you´re right. I didn´t thought on that.
Bye, Mike
Does anybody know of a hook in ssh for using smartcard for authentification?
Is anybody working on this feature?
We use scfs to store the ssh private key on the card, but this is not ideal
because the secret leaves the card during authentication. What you really
want is to do the crypto on