vin01
commented
2 years ago For username and password based authenticattion, passwords are sent to the server. however when using publickey authentication, private keys never leave the client device. Only a signaturee is sent. So they are never directly exposed to the server (a big security benefit of using key based authentication instead of passwords)
bbchylml
jayjb
At present, SSH can record the password login information, but cannot record the private key information of private key login. Is it possible?