Re: server security :: user accounts, ssh, passphrases, etc.

To: Debian User List <debian-user@lists.debian.org>
Subject: Re: server security :: user accounts, ssh, passphrases, etc.
From: Brian McKee <map@map-heb.com>
Date: Thu, 3 Apr 2008 14:14:12 -0400
Message-id: <[🔎] 0E1BEBDE-8212-435A-81DD-53C97AAAA325@map-heb.com>
In-reply-to: <[🔎] 20080403172334.GH19887@sherohman.org>
References: <[🔎] 20080402153335.GA22692@oplink.net> <[🔎] 20080403172334.GH19887@sherohman.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On 3-Apr-08, at 1:23 PM, Dave Sherohman wrote:

Unless they take the time to successfully factor the
public key,


Can you expand on that sentence?  I'm not sure what you meant by it.

Other than that I wholeheartedly agree with the suggestion to usepublic-private key pairs, and would suggest (as others have pointedout) that you turn OFF the ability to log in with a password thru ssh- - e.g. make ssh authorize with keys only.

Just in case it wasn't clear - the user names do not have to match,even when using public keys.


Brian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
Comment: Verify this email or encrypt your email for free - see gnupg.org

iD8DBQFH9R51GnOmb9xIQHQRAu+lAKCQRa4s/3FYxwCjKeRnqV4vmCzSmACfUFw6
sWRtK9J6sVaS2gAQq/zH8ew=
=zu28
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: "s. keeling" <keeling@nucleus.com>

References:
- server security :: user accounts, ssh, passphrases, etc.
  - From: "Russell L. Harris" <rlharris@oplink.net>
- Re: server security :: user accounts, ssh, passphrases, etc.
  - From: Dave Sherohman <dave@sherohman.org>

Prev by Date: Re: Sony VAIO support, anyone have experience?
Next by Date: Re: [Totally OT] Re: Hmmm. A question. Was [Re: Debian is losing its users]
Previous by thread: Re: server security :: user accounts, ssh, passphrases, etc.
Next by thread: Re: server security :: user accounts, ssh, passphrases, etc.
Index(es):
- Date
- Thread