[Kde-scm-interest] Multiple ssh-keys with svn+ssh?
Chusslove Illich
caslav.ilic at gmx.net
Sat Jun 26 13:08:16 CEST 2010
> [: Tom Albers :]
> [...] If you don't completely trust a certain computer, you might not use
> your ssh key which gives you access to other important machines, but
> rather use a second key on those machines for example. One that can be
> replaced easily if compromised.
> [: Sitaram Chamarty :]
> [...] suppose my laptop is stolen and broken into (due to physical access
> and un-encrypted home partition let's say). When I discover that, I have
> to not only pull those keys out from all the servers to which that private
> key gives access, (which I have to do in any case) but I now additionally
> have to regenerate new keys on all the other machines and submit them.
Thanks for the illustrative examples. I now see how per-machine keys don't
change the security picture, and yet can provide for less access downtime.
--
Chusslove Illich (Часлав Илић)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
Url : http://mail.kde.org/pipermail/kde-scm-interest/attachments/20100626/2d473674/attachment.sig
More information about the Kde-scm-interest
mailing list