Closed bbchylml closed 2 years ago
For username and password based authenticattion, passwords are sent to the server. however when using publickey authentication, private keys never leave the client device. Only a signaturee is sent. So they are never directly exposed to the server (a big security benefit of using key based authentication instead of passwords)
@vin01 Thanks for your reply
Thanks for the explanation @vin01.
At present, SSH can record the password login information, but cannot record the private key information of private key login. Is it possible?