Security Basics mailing list archives

Re: Is SSH worth it??

From: Johan De Meersman <johan () ops skynet be>
Date: Fri, 18 Oct 2002 14:02:47 +0200

David Corking wrote:

You can also allow root ssh from localhost 
only, adding a tiny bit more security still by not su-ing but ssh-ing to 
root.


Never thought of this -- good stuff.  Will using ssh-agent instead of
typing ssh passphrase into the remote server hinder attackers ??

I don't think so - ssh-agent is useful on your actual workstation, when
you have to do regular logins - it caches the passphrase without the
need to save it in a file somewhere. As you probably won't be doing
multiple root logins from a single ssh-session, the usefulness is almost
zero.

 



-- 
Public GPG key at blackhole.pca.dfn.de .

Attachment: _bin
Description:

Current thread:

Re: Is SSH worth it?? David Corking (Oct 15)
- <Possible follow-ups>
- RE: Is SSH worth it?? Graham, Randy (RAW) (Oct 15)
- Re: Is SSH worth it?? Johan De Meersman (Oct 15)
  - Re: Is SSH worth it?? David Corking (Oct 17)
    - Re: Is SSH worth it?? Johan De Meersman (Oct 18)
    - Re: Is SSH worth it?? David Corking (Oct 21)
    - Re: Is SSH worth it?? Richard Caley (Oct 21)
- Re: Is SSH worth it?? David Corking (Oct 16)
- RE: Is SSH worth it?? Chris Santerre (Oct 16)
  - Re: Is SSH worth it?? Devdas Bhagat (Oct 17)
  - Re: Is SSH worth it?? David Corking (Oct 17)
  - Re: Is SSH worth it?? Johan De Meersman (Oct 17)
- Re: Is SSH worth it?? Chris Berry (Oct 16)
  - RE: Is SSH worth it?? Mark Stunnenberg (Oct 17)
  - Re: Is SSH worth it?? Johan De Meersman (Oct 17)

(Thread continues...)