Full Disclosure mailing list archives

Re: [Full-Disclosure] (Psexec on *NIX)

From: "Stan Bubrouski" <stan.bubrouski () gmail com>
Date: Fri, 2 Feb 2007 13:01:47 -0500

On 2/2/07, Tyop? <tyoptyop () gmail com> wrote:


key-based login without passphrase is like eating cheese without
bred. useless (IMHO).


Totally, if someone compromises the machine and gets root they get all
your keys and without a passphrase... yeah no good.

- - With a little bit of configuration, it's easy to figure out which
key was used to login to an account; the audit trail can be managed
that way.
- - Managing which users have access to which root accounts is trivial
this way: just add or delete their keys from .ssh/authorized_keys[2].


Totally agree.


Ditto.

-sb

--
Tyop?
http://altmylife.blogspot.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: [Full-Disclosure] (Psexec on *NIX), (continued)
- - - Re: [Full-Disclosure] (Psexec on *NIX) Eduardo Tongson (Feb 01)
    - Re: [Full-Disclosure] (Psexec on *NIX) Valdis . Kletnieks (Feb 01)
    - Re: [Full-Disclosure] (Psexec on *NIX) Raj Mathur (Feb 02)
    - Re: [Full-Disclosure] (Psexec on *NIX) Valdis . Kletnieks (Feb 02)
    - Re: [Full-Disclosure] (Psexec on *NIX) Q-Ball (Feb 04)
    - Re: [Full-Disclosure] (Psexec on *NIX) James Matthews (Feb 04)
    - Re: [Full-Disclosure] (Psexec on *NIX) Tyop? (Feb 02)
    - Re: [Full-Disclosure] (Psexec on *NIX) chedder1 (Feb 02)
    - Re: [Full-Disclosure] (Psexec on *NIX) Tyop? (Feb 02)
    - Re: [Full-Disclosure] (Psexec on *NIX) Knud Erik Højgaard (Feb 03)
    - Re: [Full-Disclosure] (Psexec on *NIX) Stan Bubrouski (Feb 02)
    - Re: [Full-Disclosure] (Psexec on *NIX) Q-Ball (Feb 04)
    - Re: [Full-Disclosure] (Psexec on *NIX) Marcello Barnaba (Feb 05)
    - Re: [Full-Disclosure] (Psexec on *NIX) Siim Põder (Feb 07)
  - Re: [Full-Disclosure] (Psexec on *NIX) Troy Cregger (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) M. Shirk (Feb 01)
- Re: [Full-Disclosure] (Psexec on *NIX) Denis Jedig (Feb 07)