On 4/4/19 10:57 AM, Cord wrote: > Hi, my english seems very bad because my problem is not to make secure the > ssh key. My problem is how do not be hacked. > I have talked about the ssh key stealing to show signs that my pc was been > compromised. > I can for sure make secure my ssh key but how to make secure my the pc ? > If I have a rootkit that steal the ssh key the problem is the rootkit. You > know keylogger that steal password ? or cookie stealing ? >
The latest chrome (available with current) just had 30 security fixes, however pledge could possibly still protect your ssh key. More likely the html/js email is the vector. You could run email as another user, or use plain text only. OpenBSD puts the odds in your favour more than anything else, but it is not infallible. If you can't evaluate the risks yourself. I would suggest you do the work to run current and upgrade from snapshots regularly.
