Subject: IMPORTANT: Mandatory password and ssh key change by 2011-11-30
Peter Robinson
pbrobinson at gmail.com
Wed Oct 12 18:22:55 UTC 2011
2011/10/12 Henrik Nordström <henrik at henriknordstrom.net>:
> The password change is understandable, but why force an SSH key change
> with such short notice?
>
> And what if the SSH key is a hard token (smartcard) which can not be
> copied or trivially changed? Switching to a soft key would be mostly
> counter-productive from a security point of view. Now I were not
> currently using my hard token smartcard key for Fedora for other reasons
> but I would had been quite annoyed by this change requirement if I were.
If your using a hard token you should be using a subkeys I believe and
not the root key, not sure if that's gpg or ssh or both.
Peter
More information about the devel
mailing list