Re: OT: Safe to access SSH server from work?

To: George <pinkisntwell@gmail.com>
Cc: debian-user@lists.debian.org
Subject: Re: OT: Safe to access SSH server from work?
From: Dotan Cohen <dotancohen@gmail.com>
Date: Fri, 6 May 2011 13:48:23 +0300
Message-id: <[🔎] BANLkTikoL+rPheqECU3136r8k=NwiJxeGw@mail.gmail.com>
In-reply-to: <[🔎] BANLkTimC0J4ZMR8LZpEDwNDSa5f=+-Nv4A@mail.gmail.com>
References: <[🔎] BANLkTinFavrwh5NcWFcdJCE8+M-ja5=UXw@mail.gmail.com> <[🔎] 20110505214313.GK12860@wasteland.homelinux.net> <[🔎] BANLkTi=qGuM0ibNXhnaSwwZFdu7D1pzR0Q@mail.gmail.com> <[🔎] 20110506075429.GL12860@wasteland.homelinux.net> <[🔎] BANLkTikDTKmvC2hHN3LfLfs07o_xJiBN9w@mail.gmail.com> <[🔎] 20110506090219.GA8690@furie.org.uk> <[🔎] BANLkTimC0J4ZMR8LZpEDwNDSa5f=+-Nv4A@mail.gmail.com>

On Fri, May 6, 2011 at 12:23, George <pinkisntwell@gmail.com> wrote:
>> No, the attacker needs to HAVE your private key and KNOW the pass phrase
>> for that key. Assuming you keep your key secure and have a decent pass
>> phrase his life should be very difficult indeed.
>
> He still needs to guess a string, just like he does when password
> authentication is used. What am I missing? Probably a lot, but I'm not
> very experienced in security matters.
>

That is why the key is something you KNOW, not something you HAVE. If
one can capture your password locally, then one can capture your key
locally.

However, keys are good to prevent brute-force attacks. Think of it
like a 256-character password using the entire ASCII field. Also, keys
are not susceptible to keyloggers.

-- 
Dotan Cohen

http://gibberish.co.il
http://what-is-what.com

Reply to:

Follow-Ups:
- Re: OT: Safe to access SSH server from work?
  - From: Brian <ad44@cityscape.co.uk>

References:
- OT: Safe to access SSH server from work?
  - From: George <pinkisntwell@gmail.com>
- Re: OT: Safe to access SSH server from work?
  - From: Jochen Schulz <ml@well-adjusted.de>
- Re: OT: Safe to access SSH server from work?
  - From: George <pinkisntwell@gmail.com>
- Re: OT: Safe to access SSH server from work?
  - From: Jochen Schulz <ml@well-adjusted.de>
- Re: OT: Safe to access SSH server from work?
  - From: George <pinkisntwell@gmail.com>
- Re: OT: Safe to access SSH server from work?
  - From: Tom Furie <tom@furie.org.uk>
- Re: OT: Safe to access SSH server from work?
  - From: George <pinkisntwell@gmail.com>

Prev by Date: Re: OT: Safe to access SSH server from work?
Next by Date: Re: OT: Safe to access SSH server from work?
Previous by thread: Re: OT: Safe to access SSH server from work?
Next by thread: Re: OT: Safe to access SSH server from work?
Index(es):
- Date
- Thread