-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hans-Werner Hilse wrote: > Hi,
Hi! > So I would definately prefer to always have a guaranteed working sshd > running (I find OpenVPN/telnet a bit strange and an unnecessary > potential security hole). If running permanently, then I agree, but I do not see the potential security hole if using a correctly designed/configured tunnel. > session. So you have to weight the risks. The real problem, however, > can only be overcome by another way to login. Firing up another > instance of sshd (on a different port) is just a matter of one simple > command, so I definately prefer that. As long as there is no issue with the sshd binary, of course :) - -- Arturo "Buanzo" Busleiman - Consultor Independiente en Seguridad Informatica Servicios Ofrecidos: http://www.buanzo.com.ar/pro/ Unase a los Foros GNU/Buanzo - La palabra Comunidad en su maxima expresion. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFG7qOfAlpOsGhXcE0RCnGRAJ9fQIcJWbai4w/Daq81DPL1iEgaEgCfWkGg Apixlnkoih+SMOPShj6SpVA= =sBTB -----END PGP SIGNATURE----- -- [EMAIL PROTECTED] mailing list
