[Gllug] Selective SSH logins

[- Tethys]

On Tue, Aug 26, 2008 at 1:09 PM, John Winters <john at sinodun.org.uk> wrote:

>> I want to have everybody using key authentication but retain one password
>> login in case something goes wrong with the keys.
>
> The problem with that is you've immediately compromised your security by
> allowing access to anyone who can brute-force the password.

Sigh. I do wish people would stop perpetuating the myth that key
authenticated logins are more secure than password authenticated ones.
If anything, the opposite is true.

Tet

-- 
Perl is like vise grips. You can do anything with it but it is the
wrong tool for every job. -- Bruce Eckel
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug