[ILUG] SSH dictionary attacks.
Conor Wynne
conor at discuskeeping.com
Wed Aug 23 20:49:22 IST 2006
On 23/08/2006 16:02, "paul at clubi.ie" <paul at clubi.ie> wrote:
> On Wed, 23 Aug 2006, Aine Douglas wrote:
>
>> to see what it actually does. I'm rather wary of just "passwords",
>> maybe it comes from what I know in the windows world, dummy
>> passwords protecting unprotected secrets. Nothing worse than snake
>> oil.
>
> What makes you think ssh key pass-phrases wouldn't suffer from same
> problem?
>
> At least with a local password *you* get to apply that policy
> (length, mix of letters, rotation, strenght checks, etc..).onor
That sounds like a good feature request for ssh-keygen.
Regards
Conor
More information about the ILUG
mailing list