Re: cvs security - ssh vs pserver?

To: debian-user@lists.debian.org
Cc: "Eric G. Miller" <egm2@jps.net>
Subject: Re: cvs security - ssh vs pserver?
From: Dave Sherohman <esper@sherohman.org>
Date: Thu, 29 Nov 2001 09:47:17 -0600
Message-id: <[🔎] 20011129094717.B26725@sherohman.org>
Mail-followup-to: Dave Sherohman <esper@sherohman.org>, debian-user@lists.debian.org, "Eric G. Miller" <egm2@jps.net>
In-reply-to: <[🔎] 20011129040953.B26177@fishbowl.madduck.net>; from madduck@madduck.net on Thu, Nov 29, 2001 at 04:09:53AM +0100
References: <[🔎] 20011127015150.A3681@dirac.org> <[🔎] 20011127101421.A6350@bmrb.wisc.edu> <[🔎] 20011127194123.4ea8f109.egm2@jps.net> <[🔎] 20011128115851.C24003@fishbowl.madduck.net> <[🔎] 20011128104402.B8135@bmrb.wisc.edu> <[🔎] 20011129040953.B26177@fishbowl.madduck.net>

On Thu, Nov 29, 2001 at 04:09:53AM +0100, martin f krafft wrote:
> * Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu> [2001.11.28 10:44:02-0600]:
> > Bull. Give me one reason why it sucks. It's the way of giving them
> > anonymous cvs access without too much hassle. Or do you believe
    ^^^^^^^^^^^^^^^^^^^^
> > that letting them have *a private key* is bad because it's called
> > "private"? It's just a word, you know...
> 
> i know. but there are two problems: one, you lose trust in a single
> user means you have to redistribute new private keys. and two - it's a
> proven fact that when i have my own password or my own key, i am a
> little more protective off it. aside, with a single key you can't
> determine who leaked the key in case of a third party entry, *and* you
> still have the problem of distribution.

...all of which is not a detriment to a key which is being used to
establish _anonymous_ access.  If it was intended for authenticated
access by a trusted user or users, then you're absolutely correct.
Dmitri, however, is suggesting that a specific key pair be designated
for anonymous access, which suggests that distribution of the private
key to any and all interested third parties with a minimum of
accountability is not only acceptable, but probably also desirable.

> most importantly, you
> are actively working against the concept behind public key
> encruyption.

Not true.  The concept behind encryption (PK or otherwise) is to
establish a secure method of communication.  Dmitri is simply
pointing out that ssh normally uses a one-to-many (one person can
access accounts on many machines) model but, by distributing the
private key and securing the public key, you can reverse that to
allow essentially anonymous many-to-one access instead.

> > Yes, and you also have one to one key->user map, so the setup is not
> > anonymous. Which may not be a good thing.
> 
> so then give me a way to figure out which identity logged in to ssh if
> they all log in as one user?

You don't need to.  That's sort of the point of anonymous access.

-- 
When we reduce our own liberties to stop terrorism, the terrorists
have already won. - reverius

Innocence is no protection when governments go bad. - Tom Swiss

Reply to:

Follow-Ups:
- Re: cvs security - ssh vs pserver?
  - From: dman <dsh8290@rit.edu>
- Re: cvs security - ssh vs pserver?
  - From: martin f krafft <madduck@madduck.net>

References:
- cvs security - ssh vs pserver?
  - From: Peter Jay Salzman <p@dirac.org>
- Re: cvs security - ssh vs pserver?
  - From: Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu>
- Re: cvs security - ssh vs pserver?
  - From: "Eric G. Miller" <egm2@jps.net>
- Re: cvs security - ssh vs pserver?
  - From: martin f krafft <madduck@madduck.net>
- Re: cvs security - ssh vs pserver?
  - From: Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu>
- Re: cvs security - ssh vs pserver?
  - From: martin f krafft <madduck@madduck.net>

Prev by Date: Re: rsync's authentication?
Next by Date: Re: AVI/MPG player
Previous by thread: Re: cvs security - ssh vs pserver?
Next by thread: Re: cvs security - ssh vs pserver?
Index(es):
- Date
- Thread