[ale] remote iptables administration
Dan Newcombe
Newcombe at mordor.clayton.edu
Wed Oct 8 17:03:08 EDT 2003
On Wed, 8 Oct 2003, Jason Day wrote:
> more secure than the host-based plus host-key method. I say "could be"
> because if you use RSA public-key authentication, you can still use a
> strong passphrase for your private key, and use an auth agent to get
> automated logins. This will offer some protection if a client is ever
> compromised and the private key recovered.
But then at some point you need to enter the passphrase for the private
key, either at startup or (uggghhh) each call. The presents a problem, as
I don't want to be on vacation and get a call that the server got rebooted
and now it's waiting for me to enter some phrase.
Host key it is!
More information about the Ale
mailing list