Re: Darn skiddies (ssh login attempts)
Michael Stone wrote:
> On Fri, Apr 01, 2005 at 01:23:09AM -0800, Chris Adams wrote:
> >Or no passwords - if requiring public key authentication is feasible
> >for a system you can disable password authentication entirely:
>
> I generally consider that to be a horrible idea. Instead of centrally
> managed password policies you now have your security entrusted to the
> security of all of your user's ssh keys. IME most users aren't really
> careful about how they handle those.
Sure, maybe a user does not handle the key carefully but do you think
they are more careful with their password and don't write it down or
something like this?
Reply to: