From owner-freebsd-security Wed Jun 12 7:54:31 2002 Delivered-To: freebsd-security@freebsd.org Received: from cithaeron.argolis.org (bgm-24-169-166-7.stny.rr.com [24.169.166.7]) by hub.freebsd.org (Postfix) with ESMTP id CA78437B408 for ; Wed, 12 Jun 2002 07:54:28 -0700 (PDT) Received: from cithaeron.argolis.org (localhost [127.0.0.1]) by cithaeron.argolis.org (8.12.3/8.12.3) with ESMTP id g5CEsSva036849; Wed, 12 Jun 2002 10:54:28 -0400 (EDT) (envelope-from piechota@argolis.org) Received: from localhost (piechota@localhost) by cithaeron.argolis.org (8.12.3/8.12.3/Submit) with ESMTP id g5CEsR5B036846; Wed, 12 Jun 2002 10:54:27 -0400 (EDT) X-Authentication-Warning: cithaeron.argolis.org: piechota owned process doing -bs Date: Wed, 12 Jun 2002 10:54:27 -0400 (EDT) From: Matt Piechota To: Aragon Gouveia Cc: freebsd-security@FreeBSD.ORG Subject: Re: ssh questions In-Reply-To: <005901c21220$4ccb98e0$01000001@aragon> Message-ID: <20020612105149.M36620-100000@cithaeron.argolis.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 12 Jun 2002, Aragon Gouveia wrote: > > This is a rather poorly written expect script that I use to tar up a cvs > > tree on a computer in a rather restrictive lab. > > I haven't been following this thread, but wouldn't key authentication be > easier, securer, more reliable? It uses keys, but the keys have a password on them. It really isn't all that good either way: one way I have passwords laying about, the other I have passwordless keys that are nearly as dangerous. -- Matt Piechota To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message