security
James A. Donald
jamesd at echeque.com
Tue Oct 24 23:49:28 UTC 2006
--
James A. Donald:
>> Because SSH has only one mode, and that mode secure,
>> the user will seldom see an "are you sure" dialog,
>> and is therefore not trained to click through that
>> dialog.
Dan Lyke:
> I disagree.
>
> Every user I've taught to use SSH, after the first
> connection they make, hasn't blinked an eye at the
> question about server identity that they get the first
> time they make a connection to a new server.
Nor should they - but they do blink an eye if comes up
on an old server.
"Hey, SSH is saying this is some new server? What
gives?"
--digsig
James A. Donald
6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
jHUkjmZXY2SAgNqGyk7qK5Uj5+xDTSSBYJlQ1bko
4dFLzH4NUjMSDEzAnF3zqxKoExBDMFQuYHow1a6jK
More information about the general
mailing list