On Sat 01 Feb 2014 at 08:58:52 +0100, Raffaele Morelli wrote: > Here we go. To be more accurate, it's not that password login is less > secure, it's private key + passphrase that *adds* security because of its > nature. > That way, even a user who picks a weak passphrase has somewhat an increased > security.
Ihis doesn't so much add security as *restore* it to the level which would have existed had a weak password not been used. An administrator might have taken the decision to mandate the use of keys because he had doubts about users choosing good passwords and was not in a position to enforce them. This is a reasonable basis for key use rather than password use and it effectively imposes a known password strength for authentication. Note that the same decision (keys rather than passwords) might have been taken because his users had bad memories for good passwords with 12+ characters. It leads to his having an easier life; in other words, pure convenience, Quite how these users are going to remember the passphrase to release the key we can leave to the imagination. :) -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140201175640.gp3...@copernicus.demon.co.uk