upload files and folders to a site?

[David Fletcher]

On Sat, 2014-08-30 at 15:58 +0100, Colin Law wrote:
> On 30 August 2014 14:25, Hal Burgiss <hal at burgiss.net> wrote:
> >
> > On Sat, Aug 30, 2014 at 8:56 AM, <nilesrogoff at gmail.com> wrote:
> >>
> >> Rsync is the easier way to go.

It's probably my favourite command.

> >>
> >>
> >
> > Actually, key based authentication is more secure than passwords. Brute
> > forcing or guessing a key is an order of magnitude more difficult than the
> > same with any password, unless maybe the password is several hundred random
> > characters.
> 
> I think 'differently secure' might be a better way of describing it.
> It depends what the threat is.  If, for example, someone acquires a
> laptop that has the keys setup to allow access into a server then they
> may be able to use that to get straight in.  No need to guess
> passwords.  For the 'brute force' approach however, as you say, keys
> are effectively unbreakable.

On this laptop, I set up my personal account with

adduser --encrypt-home etc.

which is one reason why I'm using Ubuntu/derivatives (Mint) rather than
Debian! AFAICT Debian doesn't make it very easy to encrypt home
directories.

So, anybody stealing this laptop would need to break my login password
before being able to access my ssh keys ---> my server. That should give
me enough time to get home from my ski trip and change my keys before
some tea leaf breaks in.

For true paranoiacs, I believe you can set a password on the private
part of your ssh keys, although I've not played with that yet.

Dave

> 
> Colin
> 

-- 

Lisa Simpson:- "They must have programmed it to eliminate the
competition."
Bart Simpson:- "You mean like Microsoft?"