[lug] RSAAuthentication (was: Possible compromise?)
Rob Nagler
nagler at bivio.biz
Mon Jan 27 13:39:39 MST 2003
Bear Giles writes:
> This is where RSAAuthentication comes in.
Well, yes, but, ummm... We do DSA (better, I thought than RSA) for
auth, and now we have turned off PermitRootLogin everywhere. It was a
convenience hole. :-)
We don't allow root logins via DSA, but instead login to a special
account for each machine for backups and such. It's pretty well
sandboxed, but could be better!
Thanks for the advice,
Rob
More information about the LUG
mailing list