Tero Pesonen wrote:
On Friday 28 November 2008, G T Smith wrote:
Dominique Leuenberger wrote:
I rather assume the user wanted to disabled password authentication in favor of keybased authentication. If you read the thread in context, this is at least what the story suggests.
I have this setup on my server and would not be afraid of it's security.. or not more as with pw auth. Having keypair auth and no pass sounds pretty good practice to me.
Dominique
But how do you log into that box from where ever you happen to be if you do not have your private key at hand? Or did I miss something here? I'd take pw authentication over a key-based one any day unless I'd become a target of constant dictionary attacks that would affect performance. Otherwise, moving that private key from place A to B securely is too much of a trouble. With a good pw, no amount of guessing, however sophisticated or powerful, or by which ever entity, is going to work.
Regards, Tero Pesonen
There are two keys, the public one and the private one. You have to protect the private one and it's only on the computer you are connecting from . You can email the public key, if you wish, as it doesn't have to be protected. At the destination computer, it is added to the known_hosts file. The public key can be copied to any computer you wish to connect to. -- Use OpenOffice.org <http://www.openoffice.org> -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org