SSH hacked?

[Kent Borg]

Kent Borg wrote:
> Private ssh keys, on the other hand, need to be in the clear to be
> useful.

Correction: Private keys can themselves be encrypted and protected by a
passphrase. But what passphrase will you choose? Are you recycling those
strings? Or, have you just shifted what your passwords pertain to, but
not eliminated the problem of managing multiple passwords?

Also, the server doesn't need the private version of the key.


-kb