On Fri 06 May 2011 at 13:48:23 +0300, Dotan Cohen wrote: > However, keys are good to prevent brute-force attacks. Think of it > like a 256-character password using the entire ASCII field. Also, keys > are not susceptible to keyloggers.
I'm unsure whether you mean 'prevent' because neither keys nor passwords can stop brute forcing attempts. If you mean a key (256 characters) is stronger than a password (20 characters) I'd agree. But the key is no more secure than the password. Not unless the attacker has considerably more than the allotted three score years and ten to look forward to. George may be past caring by then, though. Keyloggers would get the key passphrase too. And the USB stick would have its contents pilfered. So, keys don't appear to give any advantage over passwords on an untrusted machine. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110506120852.GL13057@desktop
