[Ach] Fwd: SSH Pubkey authentication?
Lorenz Intichar
lorenz at intichar.at
Mon Jan 6 18:02:23 CET 2014
Hi Aaron,
just as a matter of interest: What security-wise disadvantages do you see
in ssh pubkey authentication, especially with a private key password set?
A big advantage is (of course) that password-guessing is impossible with
just pubkey, a disadvantage is that the right private key has to present
wherever the operator is, possibly on unsafe devices like smartphones. But
that issue is (hopefully) sufficiently addressed by password-protecting
the private key?
Best regards,
Lorenz
> Hi,
>
> Axel Hübl wrote:
>> Hi Lorenz,
>>
>> I think promoting
>>> PasswordAuthentication no
>>
>> is a good thing and worth to be added, too.
> I disagree. That's for administrators to decide if they want to use
> public key authentication or password auth. Both have advantages and
> disadvantages (security-wise and operational).
>
> Aaron
>
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach
>
More information about the Ach
mailing list