rp11235
September 22nd, 2011, 07:51 PM
When one uses public key method to login to openssh, does it use the server's public key to encrypt the password?
If the client also had a public private key pair, it would probably use it to encrypt the data, but assuming password authentication, is the password encrypted using the public key?
It would be useful if someone could post links from reliable sources too about this.
The RFCs have little about password encryption except at the transport layer.
Thanks,
rp11235
If the client also had a public private key pair, it would probably use it to encrypt the data, but assuming password authentication, is the password encrypted using the public key?
It would be useful if someone could post links from reliable sources too about this.
The RFCs have little about password encryption except at the transport layer.
Thanks,
rp11235