[nycbug-talk] Analyzing malicious SSH login attempts

Charles Sprickman spork at bway.net
Tue Sep 12 23:58:38 EDT 2006


On Tue, 12 Sep 2006, George Georgalis wrote:

> On Tue, Sep 12, 2006 at 12:29:53PM -0400, michael wrote:
>> On Tue, 12 Sep 2006 11:52:26 -0400
>> csnyder <chsnyder at gmail.com> wrote:
>>
>>> But you encrypted that key using a strong passphrase, right? They
>>> would have to get your desktop while ssh-agent was running.
>>
>> well.. I don't shut down my home PC when I walk away.  It is usually
>> running.  But I do lock the apartment door [grin].
>
> you do lock the screen, logout, or otherwise make the agent
> unavailable, right?

If you're running os-x as your desktop box, SSHKeychain has a number of 
handy features, including one to pull the key from the agent when the 
machine sleeps or the screensaver kicks in.  Fairly handy.

http://www.sshkeychain.org/

Charles

> // George
>
>
> -- 
> George Georgalis, systems architect, administrator <IXOYE><
> _______________________________________________
> % NYC*BUG talk mailing list
> http://lists.nycbug.org/mailman/listinfo/talk
> %Be sure to check out our Jobs and NYCBUG-announce lists
> %We meet the first Wednesday of the month
>



More information about the talk mailing list