[ale] Holy cow! Published in Slashdot!!
James Sumners
james.sumners at gmail.com
Thu Dec 27 14:27:27 EST 2012
Hell with that. I create a new key for each system and add an entry to my
~/.ssh/config to use it. Thus, I use a unique key for each system and
forget all about using a password to connect.
On Thursday, December 27, 2012, Michael B. Trausch wrote:
> On 12/27/2012 09:18 AM, Charles Shapiro wrote:
> > A lifelong ambition is fulfilled... I make Slashdot's front page (
> >
> http://yro.slashdot.org/story/12/12/26/1459248/lax-ssh-key-management-a-big-problem
> > ) !!
> >
> > charlesTheLurker is me... I reckon it's time to update the ol' resume.
>
> Awesome! :-)
>
> Some of the comments on that article from people that claim to be in the
> field are a bit disturbing, though...
>
> Brings up an interesting point. Moving away from passwords to cached
> private keys is something that most people _do_ see as lesser security,
> despite the fact that when properly managed it provides far better
> security. I wonder how it is we're supposed to combat that problem.
> Education doesn't work; a lot of people's eyes glaze over if you try to
> explain to them how it provides superior security.
>
> --- Mike
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org <javascript:;>
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
--
James Sumners
http://james.roomfullofmirrors.com/
"All governments suffer a recurring problem: Power attracts pathological
personalities. It is not that power corrupts but that it is magnetic to the
corruptible. Such people have a tendency to become drunk on violence, a
condition to which they are quickly addicted."
Missionaria Protectiva, Text QIV (decto)
CH:D 59
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20121227/64d7f5d2/attachment.html>
More information about the Ale
mailing list