Re: [PLUG] log as root or not ?

gabriel rosenkoetter on Mon, 1 Jul 2002 05:30:08 +0200

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] log as root or not ?

From: gabriel rosenkoetter <gr@eclipsed.net>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] log as root or not ?

Date: Sun, 30 Jun 2002 23:20:26 -0400

Mail-followup-to: plug@lists.phillylinux.org

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mutt/1.4i

On Sun, Jun 30, 2002 at 10:13:01PM -0400, christophe barbé wrote: > On Sun, Jun 30, 2002 at 09:38:26PM -0400, John Lavin wrote: > > The only issue with adding authorized keys for root is that if someone > > gains root on your local machine, they have it on the remote one as > > well. Even if it is inconvenient, it is safer to su after a ssh login > > as yourself IMHO. > You can have use passphrase to encode your private keys and use > ssh_agent to do safe and convenient at the same time. And, further, keep the secret keys only on a floppy or other removable media that goes with your person when you leave your workstation. (Losing the floppy is no big deal; ssh in as yourself, su that once, remove the public keys, generate new ones, write them to another floppy, and place them on the server.) -- gabriel rosenkoetter gr@eclipsed.net
Attachment: pgpMBDhoPAKuV.pgp
Description: PGP signature

References:

[PLUG] log as root or not ?
From: christophe barbé <christophe.barbe.ml@online.fr>

Re: [PLUG] log as root or not ?
From: John Lavin <jlavin@ccil.org>

Re: [PLUG] log as root or not ?
From: christophe barbé <christophe.barbe.ml@online.fr>

Prev by Date: Re: [PLUG] log as root or not ?

Next by Date: Re: [PLUG] Through cell phone to Internet - perpetual mobile contract

Previous by thread: Re: [PLUG] log as root or not ?

Next by thread: Re: [PLUG] log as root or not ?

Index(es):

Date

Thread