User: Password:
|
|
Subscribe / Log in / New account

SSH: passwords or keys?

SSH: passwords or keys?

Posted Jan 14, 2010 3:07 UTC (Thu) by daniels (subscriber, #16193)
Parent article: SSH: passwords or keys?

PermitRootLogins no sounds sensible on the face of it, but then you have to make sure you have a sensible mechanism to get to uid 0. fd.o swiped the Debian approach (separate accounts for every admin with uid 0, e.g. daniels and danielsR with separate keys on them), rather than using sudo. sudo is a bit of a nightmare: log in to a compromised machine, run sudo to take it down, look at logs, etc and bam, you've just handed your password to the attacker. Oops.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds