Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
What's the story with these ads on Slashdot? Check out our new blog post to find out. ×
Privacy

Submission + - Lax SSH key management a big problem

cstacy writes: Tatu Yionen, inventor of SSH, says he feels "a moral responsibility" to come out of retirement and warn that a "little-noticed problem" could jeopardize the security of much of the world's confidential data. He is referring to the management (or lack thereof) of SSH keys (i.e. "authorized_keys") files. He suggests that most organizations simply allow the SSH key files to be created, copied, accumulated, and abandoned, all over their network, making easy pickings for intruders to gain access.

Do you think this is a widespread problem?
How does your company manage SSH keys?
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Lax SSH key management a big problem

Comments Filter:

"Don't tell me I'm burning the candle at both ends -- tell me where to get more wax!!"

Working...