[Nottingham] Ouch (ssh keys)
Rory Holland
rory at linux.com
Fri Jan 25 15:37:34 UTC 2013
They'd still need to crack a 2048 or 4096-bit RSA key though, even with
access to your id_rsa. As long as you have a secure passphrase you could
tattoo your private key on your face and it wouldn't matter.
On 25 January 2013 15:24, Martin <martin at ml1.co.uk> wrote:
> On 25/01/13 14:47, Jason Irwin wrote:
> > http://www.theregister.co.uk/2013/01/25/github_ssh_key_snafu/
> Ouch! Indeed. Plus egg on a few faces.
>
>
> Perhaps that is why I'm highly adverse to the use of ssh keys for
> automated logins, and especially so for externally accessible systems...
>
> Cheers,
> Martin
>
> --
> - ------------------ - ----------------------------------------
> - Martin Lomas - OpenPGP (GPG/PGP) Public Key: 0xCEE1D3B7
> - martin @ ml1 co uk - Import from hkp://subkeys.pgp.net or
> - ------------------ - http:// ml1 .co .uk/martin_ml1_co_uk.gpg
>
> _______________________________________________
> Nottingham mailing list
> Nottingham at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/nottingham
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/nottingham/attachments/20130125/915bb28c/attachment.html>
More information about the Nottingham
mailing list