Re: Passing password in ssh



On Tue, 2008-01-22 at 11:38 -0800, Aldo Foot wrote:


On Jan 22, 2008 8:34 AM, Gijs <info@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
wrote:
Or you can do it the "easy" way. Use public keys without a
password on it.
You won't have to type in any password, so you won't get the
popup
anymore, and it's relatively secure.

I agree. Passwordless SSH keys are _very_ insecure in my opinion.
Just pray that the account owning they keys is not compromised...
because then
the floodgates are opened.
Of course this is a non-issue if your systems are in some private net
no exposed
to outside traffic.
----
I'm confused by this comment.

If you use ssh keys, does it matter whose accounts is compromised? Once
the account is compromised, couldn't they just load a keylogger?

And then, ssh keys still have passwords unless the creator of the keys
decides to omit a password.

Am I missing something here?

Craig


--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list



Relevant Pages

  • Re: Freeze.Panes revisited
    ... account with your business name on it. ... She then deposits whatever she wants ... you have to personally initial their time sheets for every "in" ... > not had time to make copies of the keys for them yet. ...
    (sci.med.dentistry)
  • Re: SSH2 question?
    ... is sufficiently well secured that keys cannot be modified by anyone other ... Public keys and the authorized_keys ... file must be stored relative to the home directory of the account they ... Note that this location is relative to the home directory of the account ...
    (freebsd-questions)
  • RE: Is SSH worth it??
    ... > Subject: RES: Is SSH worth it?? ... user account, I don't see where they would. ... how is having the text of your password stored in the Expect script ... better than having keys? ...
    (Security-Basics)
  • Re: win2003 File Server in a Workgroup -- User Access
    ... Run gpedit.msc again and take a look at the following keys: ... Also check the permissions that you set on your shared folders (give ... you can try using the guest account. ... a Win2003 File server SP1, ...
    (microsoft.public.windows.server.networking)
  • Re: SSH2 question?
    ... is sufficiently well secured that keys cannot be modified by anyone other ... file must be stored relative to the home directory of the account they ... You can certainly add as many public keys as you want to an authorized ... Note that this location is relative to the home directory of the account ...
    (freebsd-questions)