On Mon, 2003-12-08 at 03:18, Matthew Garrett wrote: > Steve Langasek wrote: > > >But an ssh key on removable media is not vulnerable to keysniffing > >alone, where a password is. > > If such behaviour becomes common, the keysniffers will simply copy > anything that looks like an SSH key that exists on an item of removable > media. There's no inherent increase in security from using a key on a > USB device other than the fact that attackers aren't thinking about that > yet. > Unless you only connect the USB device for the brief period you wish to use the content, after a "reasonable" check that your box hasn't been compromised. Not having the key permanently on a box is certainly better than the opposite. Scott -- Have you ever, ever felt like this? Had strange things happen? Are you going round the twist?
Description: This is a digitally signed message part