[FreeNX-kNX] Public Key Authentication for Users
Fabian Franz
FabianFranz at gmx.de
Thu Jan 27 05:10:06 UTC 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Am Mittwoch, 26. Januar 2005 11:13 schrieb Carsten Pohle:
> Hi all,
>
> I finally managed to setup FreeNX-0.2.5-2 and to connect to it using the
> NoMachine client. However, a critical feature still seems not to work:
> Public key authentication for users (it works fine for the nx user).
Well adding those users to the internal DB might work in that case.
>
> For security reasons, we usually forbid PasswordAuthentication in sshd_conf
> but require PubkeyAuthentication and ask our users to password-protect
> their private keys.
One solution would be to use su -, but I will need to expand nxnode-login for
that.
>
> Does FreeNX server already support this kind of user authentication, or is
> this a feature planned for a (near) future release?
There can't be real public_key authentification as the private identity file
would need to be transferred over the network, which is just plain wrong.
However if you don't need central session management, one could work out a
solution, which directly logins the user as the user. However this does need
changes in the nxclient code.
cu
Fabian
PS: So if all users have a password, would you be satisfied with a su -
solution?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFB+HewI0lSH7CXz7MRApzMAJ9h6X+r65Yw40EzLkT4Gou1jA30IACdEuhy
ZQmgp37Dt/m3pxbVdE5GE7s=
=yOrG
-----END PGP SIGNATURE-----
More information about the FreeNX-kNX
mailing list