dburke's questions -server

dburke

Asked: 2018-11-22 08:57:49 +0800 CST

ssh key revocation list and -z version number

I've been reading about setting up an ssh certificate authority and controlling access via key revocation lists. And in the man page, it lists a -z option for specifying a version number for a key revocation list. It is not very clear from context what purpose this option serves. Can anyone explain what it does?

Also, the mechanism for adding a key to the revocation list is clear, but is there any way to remove a key from the revocation list? If you make a mistake, would the entire key revocation list have to be regenerated? Is that what the version number does? Is there a consensus on best practices when it comes to managing the list and keeping track of what keys have been revoked?

Any insight is greatly appreciated.

dburke

Asked: 2009-07-14 05:31:50 +0800 CST

Mac OS X Network User account login with local admin password

At a previous job, we had our Mac server configured so that we could log into client machines using any network user account name and the local admin password. I can't seem to find out how this was accomplished, and google isn't turning up anything particularly useful. Does anyone know exactly how to accomplish this?

ssh key revocation list and -z version number

Mac OS X Network User account login with local admin password

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?