> I don't like the idea of logging in from an unknown host, but I
> might have to. I'd like to think the above plan is reasonable,
> but as always, am open to criticism. :)
>
My criticism is as before:
"have to" - versus $99.00 laptop on ebay - if you can't
afford that you're either destitute and shouldn'e be travelling,
or your notion of "have to" is seriously fucked up, as compared
to your concern about your security. I.E. put on your best
Indigo Montoya voice and say:
"Have to" - you keep using those words. I don't think it
means what you think it means.
If you don't trust the endpoint, no amount of one time passwords, or
ssh will save you. You will get keylogged, or followed in, and owned.
it's that simple. Why mess around with gymnastics like s/key from an
untrusted host instead of solving the real threat to your security?
And yes, such laptops exist.
http://cgi.ebay.com/Internet-Ready-Compaq-Armada-Laptop-No-Reserve-12_W0QQitemZ6806121193QQcategoryZ31548QQrdZ1QQcmdZViewItem
-Bob
