[lug] SSH
John Hernandez
John.Hernandez at noaa.gov
Tue Sep 3 14:39:35 MDT 2002
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Michael Hirsch wrote:
| On Tue, 2002-09-03 at 15:57, David Morris wrote:
|
|>On Tue, Sep 03, 2002 at 01:00:56PM -0600, John Dollison wrote:
|>
|>
|>SSH is *always* secure, you have no choice about that. You
|>can select, among other things, the encryption algorithm,
|>and the authentication algorithm.
|
|
| Actually, you can let SSH use rhosts authentication. This is not
| secure.
|
|
Also, SSH protocol v1 has been shown to have weaknesses (mostly
theoretical at this point, AFAIK). Use SSH protocol v2 exclusively
(disable v1 support in sshd) for a higher level of security.
- --
~ - John Hernandez - Network Engineer - 303-497-6392 -
~ | National Oceanic and Atmospheric Administration |
~ | Mailstop R/OM62. 325 Broadway, Boulder, CO 80305 |
~ ----------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAj11HgcACgkQB1Kl6VhqfiP9eQCfYGCCY8gWT5VkVTiHuPErngRE
2lIAn0A45fzJAvFgo/wfZyJSxBPWdj6I
=xhfI
-----END PGP SIGNATURE-----
More information about the LUG
mailing list