Re: [clug-talk] SSH security ?

Wed, 23 Feb 2005 10:06:06 -0800

IBM has a nice series of articles written about this. This is the first one in the series. They also talk about keychain and a few other programs to manage your keys / passwords so you don't have to type them in all the time. Very useful if you are managing a large number of servers.

http://www-106.ibm.com/developerworks/library/l-keyc.html


Ian


Jarrod Major wrote: 
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Trever Miller
Sent: Wednesday, February 23, 2005 8:21 AM
To: CLUG General
Subject: Re: [clug-talk] SSH security ?

You might want to consider turning off password
authentication and use certificates as the only
ssh auth method.



This may sound silly but could you go over the method of using certificates
instead of username/password authentication? Or provide links to a good
howto? This has been a topic that I have been interested in for some time
and haven't quite had the chance to sit down and work it out.

I would assume we are talking a whole other plane of complexity when you are
dealing with certificates instead of passwords. How secure is this method?

I too am one that does not leave the port to SSH open by default on my
firewall. It is annoying sometimes that I cannot connect to my server that
way but the risk seems high.

Jarrod


_______________________________________________
clug-talk mailing list
[email protected]
http://clug.ca/mailman/listinfo/clug-talk_clug.ca
Mailing List Guidelines (http://clug.ca/ml_guidelines.php)
**Please remove these lines when replying


_______________________________________________
clug-talk mailing list
[email protected]
http://clug.ca/mailman/listinfo/clug-talk_clug.ca
Mailing List Guidelines (http://clug.ca/ml_guidelines.php)
**Please remove these lines when replying

Reply via email to