[ALUG] Relative merits/security of Public Key and old-fashioned password with ssh

15 Dec 2009


      I'm probably being totally paranoid but still.  Is there any
significant difference in security between using password login and
Public Key when using ssh to connect to my home server?
Just to clarify ssh connections are *only* allowed from two systems
'out there' where I have shell login accounts so an intruder has to
get onto one of those systems before having any possibility of
connecting to my server.
Is it any easier for an intruder to guess my password (remember, no
access to the system so I don't think a dictionary attack is possible
is it?) or to guess the encryption key for my private key?  I can't
see any really significant difference between the two but I'm open to
any comments.
-- 
Chris Green

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

[ALUG] Relative merits/security of Public Key and old-fashioned password with ssh