29 Dec
2011
29 Dec
'11
11:29 a.m.
Am 29.12.2011 09:17, schrieb Bennett Haselton:
- Why have password logins at all? Using a secure ssh key only for
logins makes the most sense.
Well that's something that I'm curious about the reasoning behind -- if you're already using a completely random 12-character password, why would it be any more secure to use an ssh key? Even though the ssh key is more random, they're both sufficiently random that it would take at least hundreds of years to get in by trial and error.
because the key is MUCH longer than 12 chars becasue it is NOT bruteforceable because brute-force-attacks are trying password-login
if you really think your 12-chars password is as secure as a ssh-key protcected with this password you should consider to take some education in security