Vladimir Mitiouchev wrote: > David Cuthbert wrote: > > Matthew Dillon wrote: > > > For that matter, for anyone who is serious about security, never > > > allow a passworded login (ssh or otherwise) for ANY account. > > > > How do you log in at the console, then? > > Public key authorization with RSA?
How does that work on the console, exactly? How do you feed your public key into getty(8)? I don't think that's supported. While I agree with Matt in general (i.e. disallow remote logins with passwords), you still have to use passwords for locally logging in at the console. I think Matt just forgot to add the word "remote" to his sentence. This thread is about ssh anyway. Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way.
