Technology

68349 readers

3934 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago

MODERATORS

[email protected]

Interesting SSH Authentication Mechanism (blog.cloudflare.com)

submitted 1 week ago by [email protected] to c/[email protected]

11 comments fedilink hide all child comments

My first exposure to this and supposedly just a two line change to the SSH server configuration.

Anyone set this up on their own servers yet? Just for kicks?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 1 points 1 week ago (1 children)

So does requiring all users to phone you ahead of time to get a temporary password that's only alive for 20 minutes.... But that's also not done because it's...stupid.

There are dozens of tools and methods (like jumpboxes) which facilitate the authorization and usage of currently available and time tested tools for usage with environments without reinventing the wheel. Stepping away from the unix philosophy is heresy of the highest degree.

It's not a problem with the tool, only the plumber.

[–] [email protected] 2 points 1 week ago

Stepping away from the unix philosophy

SSH already allows auth with username and password against a local file. This just moves the file.