Re: SSH Blocking

To: Debian User List <debian-user@lists.debian.org>
Subject: Re: SSH Blocking
From: "Todd A. Jacobs" <nospam@codegnome.org>
Date: Mon, 25 Apr 2005 19:23:56 -0700
Message-id: <[🔎] 20050426022356.GE14149@penguin.codegnome.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20050425214654.GA20085@TheloniousMonk.laniels.org>
References: <3Xd4r-8nX-3@gated-at.bofh.it> <[🔎] 1vnq61tob5uknagun4gggddhu47cbfjgjq@4ax.com> <[🔎] 20050425214654.GA20085@TheloniousMonk.laniels.org>

On Mon, Apr 25, 2005 at 05:46:54PM -0400, Stephen R Laniel wrote:

> Is there a faster way to make this happen?

Not really, although the point is to keep a single private key with you
at all times, and load the public key everywhere you might need to go.
You can't get around having to pre-authorize the public key.

Another tool you can use, though, is one-time passwords. I find that
openssh coupled with opie, and keeping a pre-generated list of passwords
in my pocket is a good backup measure. It also avoids the potential
issue of an untrusted client gaining a copy of the private key, if
that's a concern for you.

The bottom line, though, is that you still have to pre-authorize
yourself on all your servers. There's just no getting around that.

-- 
Find my Techno-Geek Journal at http://www.codegnome.org/geeklog/

Reply to:

References:
- Re: SSH Blocking
  - From: Beretta <invalid@invalid.org>
- Re: SSH Blocking
  - From: Stephen R Laniel <steve@laniels.org>

Prev by Date: Re: login problems
Next by Date: auto-authenticating HTTP proxy
Previous by thread: Re: SSH Blocking
Next by thread: Re: SSH Blocking (and then IMAP passwords)
Index(es):
- Date
- Thread