[ILUG] SSH dictionary attacks.
John Allen
john.allen at dublinux.net
Wed Aug 23 15:57:50 IST 2006
On Wed 23 Aug 2006 11:54, Aine Douglas wrote:
> Hi Guys,
>
> I'm getting sick of seeing log entries for SSH dictionary attacks, the
> latest coming in the middle of me watching a live log while trying to
> solve a problem.
>
> I'd like to switch off password access and only allow private key
> access, but personally I have a problem with storing raw private keys
> on memory sticks, or machine hardrives, I feel its lower security than
> a memorised password.
>
Surely you'd password protect the private key (I do).
> Does anyone know if there is a SSH client which can work with
> something like a PKCS12 private keystore where a password is needed to
> unlock the private key thus allowing the private key to be stored on
> insecure devices such as client pc's and memory sticks?
>
> I know there's PKCS11 for smartcard readers and the like, but thats a
> little extravagant for my needs.
>
> Aine.
--
John Allen mailto:john.allen at moyville.net
Mandriva Club Member(Silver) http://www.moyville.net
Site of the day http://www.lightabigfire.com/
Mandriva Linux release 2006.0 (Official) for i586, kernel 2.6.12-22mdk
15:57:31 up 7 days, 4:02, 3 users, load average: 0.17, 0.39, 0.36
More information about the ILUG
mailing list