[FreeNX-kNX] FreeNX with SSH key authentication fails

Les Mikesell lesmikesell at gmail.com
Mon Nov 9 23:51:53 UTC 2009


Jeremy Wilkins wrote:
> This doesn't solve the public key authentication issues that he mentioned.
> 
> It just changes the NX user public key which ALL users need in their NX
> client after the changes you suggest.  Paul wants the users to authenticate
> via public key which is entirely different.

What other users do is irrelevant to NX - if they want to log in 
directly with ssh and their own key they can, but they won't be running NX.

> Paul:  The only way I know that this will work is by using the open source
> client, with freenx in su authentication mode, but I may be wrong.  As far
> as I know the NoMachine client won't work for that yet.  That may change in
> the near future hopefully.  Meanwhile what Les mentioned is nearly as
> secure.

The sequence of things is that NX makes the initial ssh connection as 
the nx user, using its key, then the real user login and password are 
passed encrypted over that connection - they are not handled separately 
by sshd again.

-- 
   Les Mikesell
    lesmikesell at gmail.com



More information about the FreeNX-kNX mailing list