On Mon, Mar 30, 2009 at 9:22 PM, Damian Myerscough <[email protected]> wrote: > I have just done some research on SSH and S/Key and I read that S/Key cannot > withstand a brute forced attack [1] > > [1] http://www.gentoo-wiki.info/OpenSSH_skey
True, but We can lock out an account after 10 (or 100) invalid attempts. Brute-force will require more than that number of attempts. A six latter password will require few hundred (~380) million generations. -- Regards, Susmit. ============================================= ssh 0x86DD170A http://www.fedoraproject.org/wiki/user:susmit ============================================= Sent from: Calcutta WB India. _______________________________________________ Fedora-infrastructure-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
