>I have wondered the same thing. What is the point of having/using a >passphrase if it can be ignored and simply use the password instead. >I'm new to SSH2 using latest OpenSSH and found that if I type the >wrong passphrase, I get the password prompt. So what is stopping >someone else who may have compromised (stolen) my password from >one of my non-secure accounts (where I use telnet) to simply bypass >the passphrase and use the password to get in ? This doesn't make much sense. On different accounts, you have different passwords, so why would stealing a password from one account enable you to get into another? phma
- OpenSSH(2) passphrase AND password? Keith A. Iverson
- Re: OpenSSH(2) passphrase AND password? Markus Friedl
- Re: OpenSSH(2) passphrase AND password? Daniel Woods
- Re: OpenSSH(2) passphrase AND password? David Pick
- Re: OpenSSH(2) passphrase AND passwo... Daniel Woods
- Re: OpenSSH(2) passphrase AND password? Pierre Abbat
- Re: OpenSSH(2) passphrase AND password? Gary Strahan
- Re: OpenSSH(2) passphrase AND passwo... Daniel Woods
- Re: OpenSSH(2) passphrase AND p... David Pick
- Re: OpenSSH(2) passphrase AND passwo... Eric J. Schwertfeger
- Re: OpenSSH(2) passphrase AND password? amanda
- Re: OpenSSH(2) passphrase AND password? amanda
- RE: OpenSSH(2) passphrase AND password? Walgamotte, David
