Security Basics mailing list archives
Re: Is SSH worth it??
From: David Corking <david.corking2 () dol net>
Date: Sat, 19 Oct 2002 15:55:38 -0500
On Fri, 18 Oct 2002, Johan De Meersman wrote:
You can also allow root ssh from localhost only, adding a tiny bit more security still by not su-ing but ssh-ing to root.Never thought of this -- good stuff. Will using ssh-agent instead of typing ssh passphrase into the remote server hinder attackers ??I don't think so - ssh-agent is useful on your actual workstation, when you have to do regular logins - it caches the passphrase without the
Thanks. To get this tiny benefit, where should I store the private certificate for ssh-ing to root? On the local workstation or the remote server? David
Current thread:
- Re: Is SSH worth it?? David Corking (Oct 15)
- <Possible follow-ups>
- RE: Is SSH worth it?? Graham, Randy (RAW) (Oct 15)
- Re: Is SSH worth it?? Johan De Meersman (Oct 15)
- Re: Is SSH worth it?? David Corking (Oct 17)
- Re: Is SSH worth it?? Johan De Meersman (Oct 18)
- Re: Is SSH worth it?? David Corking (Oct 21)
- Re: Is SSH worth it?? Richard Caley (Oct 21)
- Re: Is SSH worth it?? David Corking (Oct 17)
- Re: Is SSH worth it?? David Corking (Oct 16)
- RE: Is SSH worth it?? Chris Santerre (Oct 16)
- Re: Is SSH worth it?? Devdas Bhagat (Oct 17)
- Re: Is SSH worth it?? David Corking (Oct 17)
- Re: Is SSH worth it?? Johan De Meersman (Oct 17)
- Re: Is SSH worth it?? Chris Berry (Oct 16)
- RE: Is SSH worth it?? Mark Stunnenberg (Oct 17)
- Re: Is SSH worth it?? Johan De Meersman (Oct 17)
- RE: Is SSH worth it?? Chris Berry (Oct 17)