Heterogeneous File Sharing Recommendations?
Kimball Larsen
kimball at kimballlarsen.com
Tue Feb 2 20:15:49 MST 2010
On Feb 2, 2010, at 8:06 PM, Charles Curley wrote:
>
> Setting up public key auth is as simple as getting the users' public
> keys onto the servers so they can log in, and verifying the correct
> permissions. One public key per user you expect them to use.
>
> Using passwords means the passwords are sent over the net using weak or
> no encryption. Public keys themselves are not sent over the net.
> Instead, one-off tokens are sent.
>
> Also, once you have the public keys set up, the user can
> ssh/scp/etc. onto the server without ever giving a password, which is
> convenient. This allows automation, such as scripted backup at midnight.
>
> Also, many programs now operate on top of ssh, and public key auth
> means they don't require the user to enter a password. rsync, amanda,
> etc.
>
> I use public key auth on my home network out of laziness more than out
> of security concerns.
I agree with Charles. Setting up shared keys only takes a moment, and opens up the possibilities of what you can do - especially with regards to automation of stuff like backups using rsync.
-- Kimball
More information about the PLUG
mailing list