[Debian-l10n-devel] (forw) CRON-APT completed on churro [/etc/cron-apt/config]
bubulle at debian.org
Thu May 15 05:19:31 UTC 2008
Quoting Felipe Augusto van de Wiel (faw) (faw at funlabs.org):
> > Hmmm, how do *you* actually log in?
> OpenSSH connection with screen from another server. But I
> disabled key logins and restricted the authorized users to cek
> and me via password.
> I also just upgraded OpenSSH on churro, I will remove all
> keys and allow everybody to login via password for a "time window"
> so they can add new keys.
OK, thanks for the work.
From my investigations, I was not personnally using compromised
keys. The SSH keys I use have been generated much more than two years
ago. IIRC (but I can't obviously check right now), my own
~/.ssh/authorized_keys was only listing one key, which I use from my
laptop or home server and was generated in 2005.
I will gradually change it to a complete set of keys, each being more
dedicated to different activities....but I still think that no
compromise was possible from my side.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/debian-l10n-devel/attachments/20080515/29d34ba5/attachment.pgp
More information about the Debian-l10n-devel