password reuse. but of course every single one of your passwords is completely different right? ssh keys centralize auth, hopefully you keep your keys secure =). Kurt Seifried, kurt@seifried.org A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://www.seifried.org/security/ ----- Original Message ----- From: "John Andersen" <jsa@pen.homeip.net> To: "Roman Drahtmueller" <draht@suse.de>; "Bob Vickers" <R.Vickers@cs.rhul.ac.uk> Cc: <suse-security@suse.com> Sent: Thursday, January 10, 2002 11:49 PM Subject: Re: [suse-security] remote admin: ssh vs. webmin
On Thursday 10 January 2002 02:32 am, Roman Drahtmueller wrote:
Hi Bob,
Since we are talking paranoia... :-)
I keep it this way: The more often I have to type a password, the more likely it is that it gets sniffed. I use ssh all over the place for just about everything, and sniffing the ordinary way wouldn't work. But what about X-clients that sniff the X-server (X -nolisten tcp) or similar?
What point is there about worrying about typing your password on a machine that has already been cracked enough to install an X-Sniffer???
-- _________________________________ John Andersen / Juneau Alaska
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com