[lug] RSAAuthentication (was: Possible compromise?)

[Rob Nagler]

Bear Giles writes:
> This is where RSAAuthentication comes in.

Well, yes, but, ummm... We do DSA (better, I thought than RSA) for
auth, and now we have turned off PermitRootLogin everywhere.  It was a
convenience hole. :-)

We don't allow root logins via DSA, but instead login to a special
account for each machine for backups and such.  It's pretty well
sandboxed, but could be better!

Thanks for the advice,
Rob