On 9/1/06, Tracy Pearson <[EMAIL PROTECTED]> wrote:
On SSH security have a look at this article: http://www.informit.com/articles/article.asp?p=602977&r
Thanks, Tracy. A quick skim looks like a good article to review. Yes, SSH is not a solution that means that all other security measures could be dropped. "There are no silver bullets." The article does point out that a poorly configured ssh server inside your enterprise is a hole punched through the firewall with a lot of potential dangers. The NX server won't let anyone log into the machine without userid and password, still. It sets up an end-to-end encrypted tunnel, but if the machine you're running on is untrustworthy, so's the entire connection back to (and INTO) your company. But, if you're booting off a Knoppix CD or USB tab, I think a lot of those threats can be allieviated. "Security is (still) a process, not a feature." -- Ted Roche Ted Roche & Associates, LLC http://www.tedroche.com _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
