Security Basics mailing list archives
Re: Is SSH worth it??
From: Johan De Meersman <johan () ops skynet be>
Date: Fri, 18 Oct 2002 14:02:47 +0200
David Corking wrote:
You can also allow root ssh from localhost only, adding a tiny bit more security still by not su-ing but ssh-ing to root.Never thought of this -- good stuff. Will using ssh-agent instead of typing ssh passphrase into the remote server hinder attackers ??
I don't think so - ssh-agent is useful on your actual workstation, when you have to do regular logins - it caches the passphrase without the need to save it in a file somewhere. As you probably won't be doing multiple root logins from a single ssh-session, the usefulness is almost zero.
-- Public GPG key at blackhole.pca.dfn.de .
Attachment:
_bin
Description:
Current thread:
- Re: Is SSH worth it?? David Corking (Oct 15)
- <Possible follow-ups>
- RE: Is SSH worth it?? Graham, Randy (RAW) (Oct 15)
- Re: Is SSH worth it?? Johan De Meersman (Oct 15)
- Re: Is SSH worth it?? David Corking (Oct 17)
- Re: Is SSH worth it?? Johan De Meersman (Oct 18)
- Re: Is SSH worth it?? David Corking (Oct 21)
- Re: Is SSH worth it?? Richard Caley (Oct 21)
- Re: Is SSH worth it?? David Corking (Oct 17)
- Re: Is SSH worth it?? David Corking (Oct 16)
- RE: Is SSH worth it?? Chris Santerre (Oct 16)
- Re: Is SSH worth it?? Devdas Bhagat (Oct 17)
- Re: Is SSH worth it?? David Corking (Oct 17)
- Re: Is SSH worth it?? Johan De Meersman (Oct 17)
- Re: Is SSH worth it?? Chris Berry (Oct 16)
- RE: Is SSH worth it?? Mark Stunnenberg (Oct 17)
- Re: Is SSH worth it?? Johan De Meersman (Oct 17)