| 1 |
On Wednesday 17 September 2008 14:26:50 Robert Bridge wrote: |
| 2 |
> > Keys make for better security, but I would like it to be even better. |
| 3 |
> > I also want to have my facts 100% straight - if I tell my boss "it |
| 4 |
> > can't be done" I like to show research to back it up. There's nothing |
| 5 |
> > worse than saying something can't be done, and someone else in the |
| 6 |
> > room immediately says how it can be done ... :-) |
| 7 |
> |
| 8 |
> You could use keys AND passwords for the SSH. It should be trivial to |
| 9 |
> set PAM up for it... |
| 10 |
|
| 11 |
I had thought of that, but I'm shying away from it - the admin load of |
| 12 |
supporting that many user passwords is crippling. The users forget their |
| 13 |
passwords or share them and write them on stciky notes... |
| 14 |
|
| 15 |
-- |
| 16 |
alan dot mckinnon at gmail dot com |
Archives