<quote who="Zhasper"> > You could take it a step further by not allowing passwords at all, and > relying on the SSH key you carry on your USB stick to authenticate you. Of > course, that again makes things inconvenient for you - if you left the USB > stick at home, you can't log in. If it gets stolen, not only can you not > log in, but you can't even revoke your key until you get home and get your > backup key on the spare usb stick - meanwhile, whoever stole the key has > (potentially) free access to your machine..
For those watching at home: *ALWAYS* use passphrases on ssh keys for normal user accounts (as opposed to command locked accounts). Then use ssh-agent to dodge both server password and ssh key passphrase inconvenience... You will never go back to passwords again. - Jeff -- Ubuntu Live 2007: Portland, OR, USA http://www.ubuntulive.com/ "In the beginning was the word, and the word was content-type: text/plain" - Martin Schulze -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
