[EMAIL PROTECTED] on 05/30/2000 05:12:35 AM
>> 3. One key pair per user per client. All servers needing access from the
client
>> will have the public key for that client.
>
>The object being, for me, to authenticate the client (machine and username)
>to the server. If any particular client machine is compromised (or if I
>lose trust in the sysadmin if it isn't me) accesses from that machine to
>any or all of the servers can be revoked. I can also set up a (partially)
>ordered relationship indicating the levels of trust in various clients.
Great. I was starting to lean towards this. Now, how do you limit the use of a
key to one particular user on one particular host (ie prevent someone else on
the same host or anyone on another host to use the key)?
I think, by specifying "from" in the server's authorization file, I can prevent
other clients from using the key. Is this correct?
What about preventing other users on the client from using the key?
Thanks,
Noel
This communication is for informational purposes only. It is not intended as
an offer or solicitation for the purchase or sale of any financial instrument
or as an official confirmation of any transaction. All market prices, data
and other information are not warranted as to completeness or accuracy and
are subject to change without notice. Any comments or statements made herein
do not necessarily reflect those of J.P. Morgan & Co. Incorporated, its
subsidiaries and affiliates.
