[Ach] Settings for OpenSSH - missing client side configuration.
Sven Kieske
svenkieske at gmail.com
Tue Jul 15 21:34:43 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 15.07.2014 13:36, Axel Hübl wrote:
> 1) The client side is missing indeed (even if I personally use
> that, too). The reason for that is that the guide focuses on sys
> admins (working as natural multipliers) and it is therefor out of
> scope.
I really disagree with this.
After all, this is about making servers secure, right?
Well many servers do not just offer ssh servers
but also clients, and they should be configured secure.
Furthermore insecure ssh clients on an admin workstation
could lead to compromised sessions between this workstation
and a server, resulting in a compromised server.
So I really think you have to pay attention to the whole
picture, when you talk about security recommendations.
kind regards
Sven
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)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=PHT6
-----END PGP SIGNATURE-----
More information about the Ach
mailing list