• skolor
    +1

    This seems like as good a time as any to remind people they really should be using ssh keys, where possible, instead of passwords. About the only situation I wouldn't use one is if I didn't know what computer I would be connecting from ahead of time, which is a situation that doesn't come up often.

    • ST3ALTHPSYCH0
      +2

      Even at that, with the keys in authorizedkeys instead of authorizedhosts you're still covered, and you could carry your private key (password protected, of course) on a USB drive.

      • skolor
        +1

        Yeah, the case for not using keys is pretty small. I was thinking if, for some reason, you need the ability to be dropped, naked, in the middle of a city and get access to your server immediately, passwords are the way to go. Otherwise, I'm not sure the use case for them other than "management is hard".