SSH DSA logins on crank.
Carl-Daniel Hailfinger
c-d.hailfinger.devel.2006 at gmx.net
Wed May 21 08:58:11 EDT 2008
On 21.05.2008 14:36, Gary Oberbrunner wrote:
> Carl-Daniel Hailfinger wrote:
>> What happens to those who never logged in *from* a Debian/Ubuntu
>> machine? There's no reason to not let them keep their DSA key.
>
> The point, iiuc, is that if even one such key was sniffed, crank is
> compromised. At least that user's account, which is dangerous enough.
OK, but then a statement from the user like "I never logged in anywhere
from a Debian/Ubuntu system" should suffice to reenable the existing key.
Regards,
Carl-Daniel
More information about the Devel
mailing list