This is my old site that I'm keeping up for historical purposes and is no longer updated. You probably want to see my new site.

March 11, 2005

OpenSSH tips for the extremely paranoid

Linux at 09:04:58 PM MT (link) | I get called "paranoid" a lot about my insistence on using SSH key authentication to access all my Linux and UNIX servers. Then, I found this article titled Understanding OpenSSH. Sincerely, some of these tips are completely hardcore... Even I am not that paranoid.

However, some of these tips would be useful for an automated backup system (the one I have yet to write, but will one day).

On a side note, OpenSSH 4.0 has been released. mostly an evolutionary than a revolutionary release, it now has neat things like encryption of the known_hosts file, to prevent people from snooping at the hosts you last logged into. Neat.

Remember, you'd be paranoid too if everyone was out to get you!