l i n u x - u s e r s - g r o u p - o f - d a v i s
L U G O D
 
Next Meeting:
October 20: Web Application Hacking: How to Make and Break Security on the Web
Next Installfest:
TBD
Latest News:
Oct. 10: LUGOD Installfests coming again soon
Page last updated:
2001 Dec 30 17:01

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox-tech] ssh/telnet security question
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] ssh/telnet security question



On Tue, Feb 06, 2001 at 03:51:14PM -0800, Henry House wrote:
> On Tue, Feb 06, 2001 at 03:43:08PM -0800, Dale Bewley wrote:
> > If you find yourself logging in from a windows box you can get a free
> > client called putty. Search on google.com, it works pretty well and it is
> > just a single executable, so it's convenient.
> 
> There exists a similar app for Macintosh called NiftyTelnetSSH.
> 
> Also, some people may not know that if you run ssh-keygen, copy the resulting
> file ~/.ssh/identity.pub to <remote host>:~/.ssh/authorized_keys, then you
> can log in without typing in your password. May compromise security slightly,
> but if it means that you migrate away from rcp, rsh, etc., that's still a big
> win.
> 
> -- 
> Henry House
> OpenPGP key available from http://hajhouse.org/hajhouse.asc

Doesn't compromise security at all, unless

(a) you leave authorized_keys as world- or group- readable, or
(b) you can't trust root (in which case, heaven help you, because root
    can always peek into memory to find ssh's unencrypted data.

Exactly as trustworthy as the X authority keys, I believe.

Micah


LinkedIn
LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
facebook
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
O'Reilly and Associates
For numerous book donations.