Level of paranoia?... Medium - Winzip / Encrypt (AES with decent password) the files and leave them on the windows box.
High - Thumb Drive Extremely High - Winzip/Encrypt (AES with decent password) the files on the thumbdrive.. "McKown, John" <[EMAIL PROTECTED]> Sent by: Linux on 390 Port <[email protected]> 03/28/2007 03:15 PM Please respond to Linux on 390 Port <[email protected]> To [email protected] cc Subject [LINUX-390] Protecting SSH key on Windows desktop I have used ssh-keygen on my Windows desktop (Cygwin) to create the id_rsa and id_rsa.pub files. I have ftp'ed the id_rsa.pub to my Linux server and added it to the end of my ~/.ssh/authorized_keys file. This is protected with a passphrase. But does anybody know what is the best way to make sure that a Windows Administrator cannot come along and copy the private key file? At present, the best that I can think of is to put it on a USB thumb drive which I then only attach to the Windows desktop when I need to ssh/scp/sftp to Linux. Is there an easier way which is still secure? -- John McKown Senior Systems Programmer HealthMarkets Keeping the Promise of Affordable Coverage Administrative Services Group Information Technology The information contained in this e-mail message may be privileged and/or confidential. It is for intended addressee(s) only. If you are not the intended recipient, you are hereby notified that any disclosure, reproduction, distribution or other use of this communication is strictly prohibited and could, in certain circumstances, be a criminal offense. If you have received this e-mail in error, please notify the sender by reply and delete this message without copying or disclosing it. ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
