[H-GEN] How safe is SSH on the internet?
Jason Parker-Burlingham
jasonp at panix.com
Sun Jun 29 21:11:17 EDT 2003
[ Humbug *General* list - semi-serious discussions about Humbug and ]
[ Unix-related topics. Posts from non-subscribed addresses will vanish. ]
David Jericho <davidj at pisoftware.com> writes:
> On Mon, Jun 30, 2003 at 10:01:43AM +1000, Christopher Biggs wrote:
>> Heed Mark's suggestion to prohibit SSH v1 (allowing only v2), also
>> consider using RSA or DSA authentication instead of passwords, or even
>> S-key.
> Speaking of which, does anyone have a clear concise reason why DSA is
> considered the lesser of the two authentication methods?
It is?
DSA keys are used pretty universally for Protocol Version 2.
> I've often been told, and read that RSA is the better method to use
> for keys, but why?
I can only guess that DSA isn't considered to have had the thorough
testing that RSA has, but that's only the very simplest of guesses.
--
Stay up-to-date on what I'm doing lately:
http://www.panix.com/~jasonp
--
* This is list (humbug) general handled by majordomo at lists.humbug.org.au .
* Postings to this list are only accepted from subscribed addresses of
* lists 'general' or 'general-post'. See http://www.humbug.org.au/
More information about the General
mailing list