You are not logged in.
Pages: 1
Hi,
Is all communication with an opensshd exnrypted? Imean both the handshake (authentication) and then all key strokes?
Or is it recommended to log on as a user and then do sudo or su afterwards?
[ logicspot.NET | mempad.org ]
Archlinux x64
Offline
You shouldn't use SSH as root. Bad practice, bad mojo.
I don't think everything is encrypted, but from the moment you're authenticated everything is. Initial authentication is clear text afaik, something SSH keys remedies.
Got Leenucks? :: Arch: Power in simplicity :: Get Counted! Registered Linux User #392717 :: Blog thingy
Offline
ok, so "best-practice" is to first log on as a regular user and then do the sudo stuff since its encrypted from the moment I logged on.
Last edited by ftornell (2009-12-14 14:35:38)
[ logicspot.NET | mempad.org ]
Archlinux x64
Offline
No - as B already said, best practice is to use ssh keys.
B - you have to be less subtle.
Offline
Well either that or I was being fuzzy again, I just don't know it anymore .
Got Leenucks? :: Arch: Power in simplicity :: Get Counted! Registered Linux User #392717 :: Blog thingy
Offline
you will be more protected if you change the door of the ssh daemon (server)
then just use keys and passsword to non-root users
actually its better to create a single user to use the ssh service so you get 'double' protection and keep your data secure even if you give the ssh key to 3rd parties or if something wrong happens.
after logged in, you just need to do
su <user>
(then you input your user password)
then use sudo as your user or even sudo su again to get root access..
If people do not believe that mathematics is simple, it is only because they do not realize how complicated life is.
Simplicity is the ultimate sophistication.
Offline
Pages: 1