[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] safety with scp



Hi *,

b@rry wrote:
> passwordless auth is not a great idea.
>  
> having a passphrase while painful, is no less painful than a password and
> helps you...
>  
> WinSCP, Putty (pagent) allows you to cache passphrases so you don't have to
> re-enter them all the time.
>  
> Enter it once, at least if your machine is stolen, the password will no
> longer be cached, so the home box is still safe.

And you can run specific commands using the Key.
(and only  them.)

And you can delete the Public-Key on the Server any time.
(What you should do if ya Laptop is stolen.)

You can use multiple Keys with multiple Passphrases on a single (shared)
Account. (No shared Password!)

And last but not least: There is something called scponly.
Works like a charm ;-))


Dirk  
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
  
TRIA IT-consulting GmbH 
Joseph-Wild-Straße 20 
81829 München 
Germany 
Tel: +49 (89) 92907-0 
Fax: +49 (89) 92907-100  
http://www.tria.de 
 
--------------------------------------------------------
 
 working hard | for your success 
 
--------------------------------------------------------
 
Registergericht München 
HRB 113466 
 
USt.-IdNr. DE 180017238 
Steuer-Nr. 802/40600 
 
Geschäftsführer: 
Richard Hofbauer 
kaufm. Geschäftsleitung: 
Rosa Igl 
 
--------------------------------------------------------
 
 Nachricht von: 
Dirk.Schreiner@xxxxxxx 
 
Nachricht an: 
b@xxxxxxxxx, rjoffe@xxxxxxxxx, suse-security@xxxxxxxx 
 
# Dateianhänge: 0 
Die Mitteilung dieser E-Mail ist vertraulich und nur für den oben genannten Empfänger bestimmt. Wenn Sie nicht der vorgesehene Empfänger dieser E-Mail oder mit der Aushändigung an ihn betraut sind, weisen wir darauf hin, daß jede Form der Kenntnisnahme, Veröffentlichung, Vervielfältigung sowie Weitergabe des Inhalts untersagt ist. Wir bitten Sie uns in diesem Fall umgehend zu unterrichten. 
Vielen Dank  
The information contained in this E-Mail is privileged and confidental intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient or competent to deliver it to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this E-Mail is strictly prohibited. If you have received this E-Mail in error, please notify us immediately. 
Thank you 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here