On Tue, Feb 2, 2010 at 9:06 PM, Edward Ned Harvey <lop...@nedharvey.com> wrote: >> I keep hearing keys only ssh ... I'll add that too. But I do have a > > Why is it so common to jump to the conclusion that keys-only-ssh is more > secure than passwords?
My assumption is that during the contest the laptops that would ssh into the machine would be equally secure. In fact, they could be running zero services and only ssh out. I've set up environments that used ssh keys-no-passwords and it was fun. Yes, we had to protect the machines that could ssh in that much harder. In effect, you have created one big security domain, and need to pay attention to how the various security domains trust each other. Tom _______________________________________________ Discuss mailing list Discuss@lopsa.org http://lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
