Re: Darn skiddies (ssh login attempts)

To: debian-security@lists.debian.org
Subject: Re: Darn skiddies (ssh login attempts)
From: Michael Stone <mstone@debian.org>
Date: Fri, 01 Apr 2005 09:23:50 -0500
Message-id: <[🔎] 20050401142350.GB11577@mathom.us>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 6b9f80f9ed993c425821b4c7f0440b07@salk.edu>
References: <200503312244.53499.bmsims1@insightbb.com> <[🔎] 20050401074008.GB12840@sandbender> <[🔎] 6b9f80f9ed993c425821b4c7f0440b07@salk.edu>

On Fri, Apr 01, 2005 at 01:23:09AM -0800, Chris Adams wrote:

Or no passwords - if requiring public key authentication is feasiblefor a system you can disable password authentication entirely:


I generally consider that to be a horrible idea. Instead of centrally
managed password policies you now have your security entrusted to the
security of all of your user's ssh keys. IME most users aren't really
careful about how they handle those.

Mike Stone

Reply to:

Follow-Ups:
- Re: Darn skiddies (ssh login attempts)
  - From: Philipp Schulte <pschulte@uni-duisburg.de>
- Re: Darn skiddies (ssh login attempts)
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Darn skiddies (ssh login attempts)
  - From: Chris Adams <cadams@salk.edu>

References:
- Re: Darn skiddies (ssh login attempts)
  - From: Robert Lemmen <robertle@semistable.com>
- Re: Darn skiddies (ssh login attempts)
  - From: Chris Adams <cadams@salk.edu>

Prev by Date: Re: Darn skiddies (ssh login attempts)
Next by Date: sshd: "Generating new 768..." ?
Previous by thread: Re: Darn skiddies (ssh login attempts)
Next by thread: Re: Darn skiddies (ssh login attempts)
Index(es):
- Date
- Thread