Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
ruthmarx
13 days ago
|
parent
|
context
|
favorite
| on:
Thoughts on having SSH allow password authenticati...
It's convenient and fail2ban/crowdsec is generally a sufficient safeguard. Bruteforcing isn't realistic so you just have to keep an eye on vulns.
Key auth is obviously better, but password auth is not as bad as many people like to pretend.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Key auth is obviously better, but password auth is not as bad as many people like to pretend.