Re: server security :: user accounts, ssh, passphrases, etc.

To: debian-user@lists.debian.org
Subject: Re: server security :: user accounts, ssh, passphrases, etc.
From: "Russell L. Harris" <rlharris@oplink.net>
Date: Wed, 2 Apr 2008 20:33:34 -0500
Message-id: <[🔎] 20080403013334.GC22692@oplink.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] slrnfv88k8.f0k.keeling@phreaque.nucleus.com>
References: <[🔎] 20080402153335.GA22692@oplink.net> <[🔎] slrnfv88k8.f0k.keeling@phreaque.nucleus.com>

* s. keeling <keeling@nucleus.com> [080402 19:28]:
> Russell L. Harris <rlharris@oplink.net>:
> > 
> If the server's compromised, you should reinstall.  

My concern is not for corruption of the server.  My concern is whether
-- if I employ on the server the same password and passphrase which I
employ on the desktop (my principal machine) -- compromise of the
server necessitates that I change the password and the passphrase on
the desktop machine.

In other words, if I were to give you free access to my server, so
that you could inspect all the system files, would you be able to
deduce the password and passphrase, which are the same as those which
I use on the desktop machine?

RLH

Reply to:

Follow-Ups:
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: "s. keeling" <keeling@nucleus.com>
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: "Douglas A. Tutty" <dtutty@porchlight.ca>

References:
- server security :: user accounts, ssh, passphrases, etc.
  - From: "Russell L. Harris" <rlharris@oplink.net>
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: "s. keeling" <keeling@nucleus.com>

Prev by Date: [Totally OT] Re: Hmmm. A question. Was [Re: Debian is losing its users]
Next by Date: Did the syntax for a samba /etc/fstab entry change?
Previous by thread: Re: server security :: user accounts, ssh, passphrases, etc.
Next by thread: Re: server security :: user accounts, ssh, passphrases, etc.
Index(es):
- Date
- Thread