Date: Fri, 27 Apr 2007 07:58:47 -0400 From: Schiz0 <schiz0phrenic21@gmail.com> To: "Bill Moran" <wmoran@potentialtech.com> Cc: freebsd-questions@freebsd.org Subject: Re: Defending against SSH attacks with pf Message-ID: <8d23ec860704270458n52518c2yf74a49e1b689060f@mail.gmail.com> In-Reply-To: <20070427063744.7639d3e1.wmoran@potentialtech.com> References: <20070415200255.18e6ab3f.wmoran@potentialtech.com> <20070416184315.GA93730@idoru.cepheid.org> <462E7F2A.10202@vindaloo.com> <20070425084454.165dd9d3.wmoran@potentialtech.com> <462F5AA6.1020906@dial.pipex.com> <20070427063744.7639d3e1.wmoran@potentialtech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 4/27/07, Bill Moran <wmoran@potentialtech.com> wrote: > > In response to Alex Zbyslaw <xfb52@dial.pipex.com>: > > > Bill Moran wrote: > > > > >I'm a big fan of PKI, but PKI suffers from one major problem, and it's > > >the same flaw that physical keys suffer from: you have to have the key > > >with you. > > > > > > > > If I had to use SSH from random locations, I'd get a USB stick that > > attached to a (physical) keyring and just stick it with my (physical) > > keys since I already have to carry those everywhere. The SSH keys > > should be protected by decent passphrases so even losing the USB stick > > isn't the biggest deal. Imation seem to make one that has one of those > > climbing-style buckles: > > > http://www.misco.co.uk/applications/SearchTools/item-details.asp?EdpNo=247840&CatId=322 > > I've considered that, except that my keyring is already too damn big and > bulky. I am curious about the durability of USB jump drives, though. My > keys tend to get thrown around, they get wet, they experience extremes in > temperature. Do you have any experience with how well jump drives hold up > to that kind of torture? > > Despite the fact that it's a good idea, I've simply opted out on it. I've > got a good, long password for my account and when I weighed the risks vs. > the headaches I decided I was probably ok with a good long password. > > Of course, YMMV. > > -- > Bill Moran > http://www.potentialtech.com > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" My flash drive has gone through the washer machine and the only thing that happened was it got a small spot of rust on it. Other than that, it worked fine.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8d23ec860704270458n52518c2yf74a49e1b689060f>