Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Order of authentication methods (pubkey+password) #1566

Open
secretfork opened this issue Mar 14, 2024 · 0 comments
Open

Order of authentication methods (pubkey+password) #1566

secretfork opened this issue Mar 14, 2024 · 0 comments
Labels
suggestion Feature suggestion

Comments

@secretfork
Copy link

secretfork commented Mar 14, 2024
edited

Is your feature request related to a problem? Please describe.

If authenticating using a pubkey+password it would be nice if one could (optionally) configure pubkey authentication to be executed first. Mostly because this would get rid of brute force hacking attempts which would probably not even try to get past the pubkey authentication step, and thus not encouraging bots to even try. Currently, sftpgo allows clients to execute password authentication before authenticaing with pubkey.

Describe the solution you'd like

Something like "AuthenticationMethods publickey,password" (notice the order) used in sshd_config

Describe alternatives you've considered

No response

What are you using SFTPGo for?

Professional user, 1 person business

Additional context

No response
@secretfork secretfork added the suggestion Feature suggestion label Mar 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
suggestion Feature suggestion
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@secretfork