On Tue, Jan 3, 2012 at 12:48 AM, Bennett Haselton <bennett@xxxxxxxxxxxxx> wrote:
>
>> You can also set up openvpn on the server and control ports like ssh to
>> only be open to you if you are using an openvpn client to connect to the
>> machine.
>
> True but I travel a lot and sometimes need to connect to the machines
> from subnets that I don't know about in advance.
Have you ever typed your password on a machine you didn't control?
Or even one that was not completely secure (i.e. could have had a
hardware keylogger attached, or a software key logger installed by a
trojan, virus, or wifi hack)? If so, you might be missing the most
likely possibility for someone having your password: simply grabbing
it as you type before ssh gets a chance to encrypt it.
--
Les Mikesell
lesmikesell@xxxxxxxxx
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
Re: an actual hacked machine, in a preserved state
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: an actual hacked machine, in a preserved state
- From: Les Mikesell <lesmikesell@xxxxxxxxx>
- Date: Tue, 3 Jan 2012 09:58:40 -0600
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <4F02A4D3.1040504@peacefire.org>
- References:
- an actual hacked machine, in a preserved state
- From: Bennett Haselton
- Re: an actual hacked machine, in a preserved state
- From: Craig White
- Re: an actual hacked machine, in a preserved state
- From: Johnny Hughes
- Re: an actual hacked machine, in a preserved state
- From: Bennett Haselton
- an actual hacked machine, in a preserved state
- Prev by Date: Re: Passwords apparently stopped working.
- Next by Date: Re: an actual hacked machine, in a preserved state
- Previous by thread: Re: an actual hacked machine, in a preserved state
- Next by thread: Re: an actual hacked machine, in a preserved state
- Index(es):
 |