Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> most ssh clients will tell you if a certificate changed

Most implementations of ssh in the wild don't use CA (or self) signed certificates. I dont know if Cisco even supports the use of ssh with certificates.



> I dont know if Cisco even supports the use of ssh with certificates.

They do -- in addition to public key auth, as GhettoMaestro mentioned.


Cisco SSH has supported public key auth for as far as I can recall.


SSH keys and certificates are different authentication mechanisms (I learnt this from https://news.ycombinator.com/item?id=20955465)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: