1 |
On Wednesday 17 September 2008 14:26:50 Robert Bridge wrote: |
2 |
> > Keys make for better security, but I would like it to be even better. |
3 |
> > I also want to have my facts 100% straight - if I tell my boss "it |
4 |
> > can't be done" I like to show research to back it up. There's nothing |
5 |
> > worse than saying something can't be done, and someone else in the |
6 |
> > room immediately says how it can be done ... :-) |
7 |
> |
8 |
> You could use keys AND passwords for the SSH. It should be trivial to |
9 |
> set PAM up for it... |
10 |
|
11 |
I had thought of that, but I'm shying away from it - the admin load of |
12 |
supporting that many user passwords is crippling. The users forget their |
13 |
passwords or share them and write them on stciky notes... |
14 |
|
15 |
-- |
16 |
alan dot mckinnon at gmail dot com |