[nycbug-talk] ssh config question

Luis Murillo lmurillo
Mon Oct 3 13:40:27 EDT 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Why is it a "weaker alternative" to use authorized_keys? Isn't this a
bit more secure than using passwords?

Hubert Feyrer wrote:
> On Mon, 3 Oct 2005, Steve Rieger wrote:
> 
>> amoung the many options is there a way i can tell sshd_config to only
>> allow connections from a certain ip address.
> 
> 
> I guess that hosts.allow is your best bet here.
> 
> A weaker alternative is to turn off password-based authentication
> ("PasswordAuthentication no"), and the use "from=" in the
> authorized_keys file, ssee the "AUTHORIZED_KEYS FILE FORMAT" section in
> sshd(8) manpage.
> 
> 
>  - Hubert
> _______________________________________________
> % NYC*BUG talk mailing list
> http://lists.nycbug.org/mailman/listinfo/talk
> %Be sure to check out our Jobs and NYCBUG-announce lists
> %We meet the first Wednesday of the month
> 
> 

- --
Luis Murillo
lmurillo at gmx.net

GPG KeyID: D66B35FD
gpg --keyserver pgp.mit.edu --recv-keys D66B35FD
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDQW0Lv7xQYtZrNf0RAqzdAJ479OQI06S7dB9ZeMulrpbyNfV0wACfXN0I
St4lGetasoK2ggO5WHW5XWY=
=0QJC
-----END PGP SIGNATURE-----




More information about the talk mailing list