ssh-agent and CDE

ssh-agent and CDE

Post by Kyler Lai » Thu, 14 Aug 1997 04:00:00

A couple months ago, someone mentioned that there
is an easy way to add login handlers to Solaris.
This started me thinking about integrating ssh
more tightly into Solaris/CDE.

In our environment, user's files are not tightly
secured.  It would be silly to use unencrypted
identity files (and depend on the file system
security to keep others from using them).  It's
less-than-ideal, however, to have the user login
to the OS and then authenticate again for ssh.

I think it would be quite reasonable to have
ssh-agent and ssh-add run as part of the CDE login
process, though.  Thus, when a user logs in, his
ID/password pair would not only be used to
authenticate him to the OS, but it would also be
used to decrypt a default identity file.

With such a system in place, the user would never
even need to know about ssh in order to perform
secure transactions.  Encrypted identity files
could even be created/modified as part of
account creation and password modification.

Any thoughts on this?  Is it as secure and as
useful as I think?  How would it be implemented?

Thank you.



1. ssh-agent with CDE

Anyone using cch-agent before launching CDE? I have no problems with
OpenWindows and fvwm, but the CDE thing ain't there.
    I don't want to make a system wide change if possible, just allow
end users to configure their own .dt* stuff.

sean chisham

2. Pleae help -IMAP

3. CDE + ssh-agent

4. /Root as Gnome?

5. can ssh-agent work between ssh-2.3 and ssh-3.5

6. HELP!!! Reveal TV500.

7. Problem with ssh-agent and ssh-add

8. DHCP and DNS server

9. starting ssh-agent as parent of X session for SSH

10. ssh-agent and Gnome on Solaris...Doesn't work

11. xdm + ssh-agent

12. ssh-agent behaviour on s10_63??

13. ssh-agent and X on s10_63 (x86)?