Date: Mon, 18 Dec 2000 14:41:35 -0500 From: Garance A Drosihn <drosih@rpi.edu> To: Alfred Perlstein <bright@wintelcom.net>, Kurt Seifried <seifried@securityportal.com> Cc: Moses Backman III <penguinjedi@home.com>, Todd Backman <todd@flyingcroc.net>, freebsd-security@FreeBSD.ORG Subject: Re: woah Message-ID: <p04330105b664186fb45b@[128.113.24.47]> In-Reply-To: <20001218112434.C19572@fw.wintelcom.net> References: <Pine.BSF.4.21.0012172347240.48779-100000@security1.noc.flyingcroc.net> <20001218133716.A550@cg22413-a.adubn1.nj.home.com> <20001218104954.B19572@fw.wintelcom.net> <005a01c06924$77186340$ca00030a@seifried.org> <20001218112434.C19572@fw.wintelcom.net>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:24 AM -0800 12/18/00, Alfred Perlstein wrote: >In a perfect world, you have your admin send you a pgp signed >message with the server public key in it. When you initially >authenticate, you sure as hell make sure it matches. > >Not that difficult. Not for those of you living in a perfect world. In our (RPI) world, we have a few thousand users, most of whom are not doing anything with PGP. Most of them do not really understand that warning message, and the situation is not helped because we (the administrators of a few hundred unix machines) do not do a good job of keeping the ssh host-key constant. Some of these issues are just tough to deal with in an imperfect world... -- Garance Alistair Drosehn = gad@eclipse.acs.rpi.edu Senior Systems Programmer or gad@freebsd.org Rensselaer Polytechnic Institute or drosih@rpi.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?p04330105b664186fb45b>