Re: Is SSH worth it??
From: Johan De Meersman (johan@ops.skynet.be)Date: 10/18/02
- Previous message: Alaric Darconville: "RE: WIRELESS THEFT"
- In reply to: David Corking: "Re: Is SSH worth it??"
- Next in thread: David Corking: "Re: Is SSH worth it??"
- Next in thread: Louis Erickson: "RE: Is SSH worth it??"
- Reply: David Corking: "Re: Is SSH worth it??"
- Reply: Richard Caley: "Re: Is SSH worth it??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 18 Oct 2002 14:02:47 +0200 From: Johan De Meersman <johan@ops.skynet.be> To: security-basics@securityfocus.com
David Corking wrote:
>>You can also allow root ssh from localhost
>>only, adding a tiny bit more security still by not su-ing but ssh-ing to
>>root.
>>
>>
>
>Never thought of this -- good stuff. Will using ssh-agent instead of
>typing ssh passphrase into the remote server hinder attackers ??
>
>
I don't think so - ssh-agent is useful on your actual workstation, when
you have to do regular logins - it caches the passphrase without the
need to save it in a file somewhere. As you probably won't be doing
multiple root logins from a single ssh-session, the usefulness is almost
zero.
>
>
-- Public GPG key at blackhole.pca.dfn.de .
- application/pgp-signature attachment: stored
- Previous message: Alaric Darconville: "RE: WIRELESS THEFT"
- In reply to: David Corking: "Re: Is SSH worth it??"
- Next in thread: David Corking: "Re: Is SSH worth it??"
- Next in thread: Louis Erickson: "RE: Is SSH worth it??"
- Reply: David Corking: "Re: Is SSH worth it??"
- Reply: Richard Caley: "Re: Is SSH worth it??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
