Ultimately, any client can say whatever it wants to the server. So it would be impossible to 100% guarantee that. ________________________________________ From: openssh-unix-dev <openssh-unix-dev-bounces+kevin.fox=pnnl.gov@xxxxxxxxxxx> on behalf of Harald Dunkel <harald.dunkel@xxxxxxxxxx> Sent: Monday, February 10, 2020 6:10 AM To: openssh-unix-dev@xxxxxxxxxxx Subject: question about pubkey and passphrase Hi folks, Since Docker can bind-mount every .ssh directory I am looking for some way to forbid unprotected private keys. AFAICS it is currently not possible on the sshd to verify that the peer's private key was protected by a passphrase. Can you confirm? Regards Harri _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://protect2.fireeye.com/v1/url?k=96cfafc7-ca7a907e-96cf85d2-0cc47adc5fce-899a0df4bd35ba36&q=1&e=e42fb84f-994c-4b30-90c6-59a2c0d2b321&u=https%3A%2F%2Flists.mindrot.org%2Fmailman%2Flistinfo%2Fopenssh-unix-dev _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
