[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: [SAGE] The danger of SSH keys..

To: Josh Smith <irilyth@infersys.com>
Subject: Re[2]: [SAGE] The danger of SSH keys..
From: "Dustin Puryear" <dustin@puryear-it.com>
Date: Mon, 22 Jan 2007 11:35:13 -0600
cc: SAGE Members Mailing List <sage-members@usenix.org>
In-Reply-To: <17844.62408.620409.299825@melfpelt.swarpa.net>
Organization: Puryear Information Technology, LLC
References: <410572049.20070122085528@puryear-it.com>
References: <34f63e5e69e99445d121422c14c3ce89@occam.com>
References: <17844.62408.620409.299825@melfpelt.swarpa.net>
Reply-To: "Dustin Puryear" <dustin@puryear-it.com>
Sender: owner-sage-members@usenix.org

A key difference here is that with a system password, I can at least
force the user to set a password rather than leaving it blank. I can
also require a minimum strength. With SSH keys, I can't do *any* of
that.

The points about two-factor authentication are well-taken, but I guess
I'm just trying to focus on SSH keys specifically in this thread. To
me, they are both convenient and very dangerous. More so than just
passwords since you can mitigate some disadvantages of passwords to
some degree, but it's very difficult to enforce anything on SSH keys
since it's really so client-focused.

---
Puryear Information Technology, LLC
Baton Rouge, LA * 225-706-8414
http://www.puryear-it.com

Author:
  "Best Practices for Managing Linux and UNIX Servers"
  "Spam Fighting and Email Security in the 21st Century"

Download your free copies:
  http://www.puryear-it.com/publications.htm

Monday, January 22, 2007, 11:26:32 AM, you wrote:

> I think the issue is that in many situations people can generate keys on
> machines over which you don't have any control whatsoever. If I can log in
> to your server from my laptop, you don't have any way to ensure that I've
> put a good passphrase on my private key; whereas if I'm logging in with a
> password, you can do things on the server side to ensure that I've chosen
> a good one.

> Then again, you can't control what I do with my excellent password; I
> might write it down on a post-it stuck to my monitor, or repeat it aloud a
> hundred times in the same room as my pet parrot, or put it in my profile
> on MySpace, or whatever. There's only so much you can do to prevent users
> from screwing up; telling them what to do, and punishing them if you catch
> them not doing it, may be your best bet in many cases. (And if you can't
> justify something more hardcore, like physical token based security, or
> whatever.)

>                                       -Josh (irilyth@infersys.com)

Follow-Ups:
- Re[2]: [SAGE] The danger of SSH keys..
  - From: Josh Smith <irilyth@infersys.com>
- Re: [SAGE] The danger of SSH keys..
  - From: Bryan Fullerton <bryanf@samurai.com>

References:
- [SAGE] The danger of SSH keys..
  - From: "Dustin Puryear" <dustin@puryear-it.com>
- Re: [SAGE] The danger of SSH keys..
  - From: Leon Towns-von Stauber <leonvs@occam.com>
- Re: [SAGE] The danger of SSH keys..
  - From: Josh Smith <irilyth@infersys.com>

Prev by Date: Re: [SAGE] The danger of SSH keys..
Next by Date: Re[2]: [SAGE] The danger of SSH keys..
Prev by thread: Re: [SAGE] The danger of SSH keys..
Next by thread: Re[2]: [SAGE] The danger of SSH keys..
Index(es):
- Date
- Thread