[CentOS] Server Hacked: Cpanel

William L. Maltby BillsCentOS at triad.rr.com
Wed Aug 9 19:19:23 UTC 2006


On Wed, 2006-08-09 at 15:01 -0300, Rodrigo Barbosa wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> On Wed, Aug 09, 2006 at 01:15:29PM -0400, William L. Maltby wrote:
> > My question is: is there a scenario where the public key based solution
> > is just totally inappropriate? Am I overrating the value of going
> > "passwordless"?
> 
> No to both questions.
> I use the same thing on all my servers (only keys, no plain-text).

That's good to know. So I am not only learning again, but also
evaluating properly (at least temporarily)!

> 
> However, there is a 3rd authentication option. The first 2 are:
> 
> - - Password
> - - Public Key
> 
> the 3rd being:
> 
> - - Challenge/Response

HA! I remember this from before I got cable access. While futilely
hoping the telco would get DSL out here in the sticks, I did dial to my
ISP. Auth was either PAP or CHAP. IIRC, ISP preferred CHAP and that's
what we did (PtoP).

> 
> Challenge/Response authentication include things like S/KEY and
> OTPW (One Time PassWord).
> 
> <snip CHAP is pretty darn good explanation>

> Rodrigo Barbosa
> <snip sig stuff>

Thanks Rodrigo, for taking the time!
-- 
Bill
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://lists.centos.org/pipermail/centos/attachments/20060809/3089542d/attachment.sig>


More information about the CentOS mailing list