[SAC] Proposal: Keys for SSH logins
Martin Spott
Martin.Spott at mgras.net
Tue Oct 4 04:58:23 EDT 2011
On Mon, Oct 03, 2011 at 01:50:11PM -0700, Alex Mandel wrote:
> For those who like to be pro-active, feel free to use ssh keys with your
> current logins.
>
> ssh-copy-id user at nameofmachine will copy your key over.
Note: This command serves as a nice helper for those who didn't use any
SSH public key authentication before. If you already had a custom SSH
public key setup, I'd recommend to have a backup copy _plus_ a working
login shell before using 'ssh-copy-id' - just a convenience so you
still have a handle to roll the changes back.
BTW, as far as I understand the latest 'hack' was carried out using SSH
public key authentication. Thus we should emphasize that just public
key authentication alone is not the cure against all possible hacks.
Keeping the corresponding private key _really_ safe is an _essential_
requirement here.
Cheers,
Martin.
--
Unix _IS_ user friendly - it's just selective about who its friends are !
--------------------------------------------------------------------------
More information about the Sac
mailing list