Page 1 of 1
SFTP multiple private key files; visible passphrase length
Posted: Thu Jan 31, 2008 3:50 pm
by tatra603
Hello!
1) Is it possible to have multiple private keys in menu -> Options -> Preferences -> HTTP / HTTPS / FTP / SFTP / Proxy Configuration -> FTP/SFTP? In case I need to log into different servers under different (sometimes shared) identities? Can You add possibility of multiple private keys with different passphrase for each file?
2) I would also prefere not to show length of passphrase in Options to increase security.
3) I noticed, that that passphrase is stored secured in "optionsSa9.0.xml". Is this passphrase secured enough?
Thank You for Your answer in advance, Stepan
Re: SFTP multiple private key files; visible passphrase length
Posted: Thu Jan 31, 2008 6:09 pm
by sorin_ristache
Hello,
tatra603 wrote:1) Is it possible to have multiple private keys in menu -> Options -> Preferences -> HTTP / HTTPS / FTP / SFTP / Proxy Configuration -> FTP/SFTP? In case I need to log into different servers under different (sometimes shared) identities? Can You add possibility of multiple private keys with different passphrase for each file?
Do you mean to be able to set multiple private keys in Preferences so that oXygen tries each private key for a new SFTP connection until the connection can be successfully established or until there are no more keys to try?
tatra603 wrote:2) I would also prefere not to show length of passphrase in Options to increase security.
We will consider showing a fixed number of characters for the passphrase when the Preferences dialog is reopened independent of the number of characters that you set in your passphrase.
tatra603 wrote:3) I noticed, that that passphrase is stored secured in "optionsSa9.0.xml". Is this passphrase secured enough?
The encryption algorithm is a custom one based on a key stored in a hidden location which I will not reveal here and which is not easy to detect. I suppose it could be broken by a government agency or a professional encryption breaker but it was designed only for average protection against other users of the same computer for whom breaking it would be computationally unfeasible with average decryption tools.
Regards,
Sorin
Re: SFTP multiple private key files; visible passphrase length
Posted: Thu Jan 31, 2008 6:26 pm
by tatra603
sorin wrote:
Do you mean to be able to set multiple private keys in Preferences so that oXygen tries each private key for a new SFTP connection until the connection can be successfully established or until there are no more keys to try?
Yes. Or to ask user which key to use.
sorin wrote:
encryption breaker but it was designed only for average protection against other users of the same computer for whom breaking it would be computationally unfeasible with average decryption tools.
OK, it is sufficient for me.
Is it possible to log in using SFTP combining loging based on private key file together with username and password. It is doubled, I know, but one my customer set up this behaviour now. Eg. FileZilla can handle it, but oXygen looks like to have a problem. It does not log in. But it is possible, that I am doing something wrong.
Regards, Stepan
Re: SFTP multiple private key files; visible passphrase length
Posted: Thu Jan 31, 2008 6:49 pm
by sorin_ristache
tatra603 wrote:Yes. Or to ask user which key to use.
I logged your request to our internal system.
tatra603 wrote:Is it possible to log in using SFTP combining loging based on private key file together with username and password. It is doubled, I know, but one my customer set up this behaviour now. Eg. FileZilla can handle it, but oXygen looks like to have a problem. It does not log in.
No, the current version of oXygen cannot authenticate with both methods for the same SFTP connection. We will study how we can implement that.
Thank you for your requests,
Sorin