Re: [Fwd: Re: Debian SSH server configuration]

To: debian-user@lists.debian.org
Subject: Re: [Fwd: Re: Debian SSH server configuration]
From: Christopher Nelson <chris@cavein.org>
Date: Wed, 26 Apr 2006 11:23:08 -0700
Message-id: <[🔎] 20060426182308.GB8028@witts-end.cavein.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 444FB8D0.5020305@antibodymx.net>
References: <[🔎] 444ECC2D.7070200@aol.com> <[🔎] 20060426181237.GA4241@galactic.demon.co.uk> <[🔎] 444FB8D0.5020305@antibodymx.net>

On Wed, Apr 26, 2006 at 08:15:44PM +0200, Martin A. Brooks wrote:
> Andrew M.A. Cater wrote:
> >When it asks you for a passphrase, hit <Enter> twice - you have a null
> >passphrase (which is fractionally less secure but that's probably OK.)
> 
> Not so much "fractionally less secure" as "insecure". If the machine 
> containing the private key is compromised so, potentially, is every 
> machine that the public key has been distributed too.

I gather that that's insecure, how is using 'ssh-add'?  Does it cache
the passphrase only for the X session or for every login?  And even if
it's the first, is that even marginally secure?

-- 
Christopher Nelson -- chris@cavein.org
-----------------------------------------------------------------------
Sorry never means having your say to love.

Reply to:

References:
- [Fwd: Re: Debian SSH server configuration]
  - From: Bruce Corbin <brucefla@aol.com>
- Re: [Fwd: Re: Debian SSH server configuration]
  - From: amacater@galactic.demon.co.uk (Andrew M.A. Cater)
- Re: [Fwd: Re: Debian SSH server configuration]
  - From: "Martin A. Brooks" <martin@antibodymx.net>

Prev by Date: Re: [Fwd: Re: Debian SSH server configuration]
Next by Date: Re: Debian SSH server configuration
Previous by thread: Re: [Fwd: Re: Debian SSH server configuration]
Next by thread: etch testing bug 341055 spamassassin and exim - high load
Index(es):
- Date
- Thread