Hi,
On Fri, 29 Dec 2000, David Knight French wrote:
> This has to do with it not being an option in the IETF Draft proposal
> for SSH, thus it is not supported. It is supported in v1/ssh1 for
This is not correct, hostbased authentication is indeed specifed (as an
option) in the ssh2 user authentication draft
(draft-ietf-secsh-userauth-08.txt):
...
6. Host-Based Authentication: hostbased
Some sites wish to allow authentication based on the host where the user
is coming from, and the user name on the remote host. While this form of
authentication is not suitable for high-security sites, it can be very
convenient in many environments. This form of authentication is OPTIONAL.
When used, special care SHOULD be taken to prevent a regular user from
obtaining the private host key. ...
Cheers, (and a happy new year :-)
/Mats
