On 31/01/14 17:17, Артур Истомин wrote: > On Tue, Jan 28, 2014 at 08:37:57PM +0000, Brian wrote: >> On Tue 28 Jan 2014 at 11:40:04 -0800, Jon Danniken wrote: >> <snipped> >> >> But ssh keys are great for some situations. The problem is their >> advocates never describe what the situations are and it is too often a >> case of being instructed to "use a ssh key". The downsides to a ssh >> key are left unsaid and the impression is given that a password login is >> naff and insecure. The pros and cons of an ssh key login are rarely >> discussed by these advocates, >> <snipped> > > Moreover, all intrusions in open source projects (through ssh) like > kernel's git in 2011 or Fedora's repos occurred as a consequence of > stealing private keys instead of password guessing. > <snipped>
1++ Kind regards -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/52eb46d9.4050...@gmail.com
