Michael Stone wrote: > On Fri, Apr 01, 2005 at 01:23:09AM -0800, Chris Adams wrote: > >Or no passwords - if requiring public key authentication is feasible > >for a system you can disable password authentication entirely: > > I generally consider that to be a horrible idea. Instead of centrally > managed password policies you now have your security entrusted to the > security of all of your user's ssh keys. IME most users aren't really > careful about how they handle those.
Sure, maybe a user does not handle the key carefully but do you think they are more careful with their password and don't write it down or something like this? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
