[linux-elitists] ssh hygiene

Marc MERLIN marc@merlins.org
Mon Apr 29 23:00:32 PDT 2002


On Mon, Apr 29, 2002 at 10:51:29PM -0700, Don Marti wrote:
> If you're going to go somewhere, set up a new account, and log in
> from there to your account back home, it makes sense to have the
> key fingerprints for your known_hosts on a piece of paper in your
> wallet -- right?

If you really care about security, you all need to do one thing
ssh 2 + pam_opie
(one time passwords, and use a palm to generate the OTP, not a computer,
where your keystrokes, and hence your passphrase, can be logged)

Marc
-- 
Microsoft is to operating systems & security ....
                                      .... what McDonalds is to gourmet cooking
  
Home page: http://marc.merlins.org/   |   Finger marc_f@merlins.org for PGP key



More information about the linux-elitists mailing list