August 28, 2018

 

On SSH security

In case of need to temporary log in into SSH box from non-secure location (i.e. assuming keyboard wiretapping on Intel ME-enabled system) it's possible to use google auth as second-factor auth. It's also worth considering the worst scenario of man-in-the-middle and enable 2FA for a separate non-sudoer account.

Labels: , ,

Permanent link. Posted by Shamil Gumirov @ 11:17 PM
Comments: Post a Comment



<< Home

This page is powered by Blogger. Isn't yours?