Subject: IMPORTANT: Mandatory password and ssh key change by 2011-11-30

Richard W.M. Jones rjones at
Thu Oct 13 08:12:44 UTC 2011

On Wed, Oct 12, 2011 at 12:48:57PM -0700, Adam Williamson wrote:
> Sure. However, if you have multiple keys with multiple passphrases, then
> it's extra work to compromise each key.

Not true at all.  If I keep my key(s) in a single location (a secure
machine at my home), then either all keys in that location are secure
or they've all been compromised.  Someone with a rootkit on that
machine can capture all of my keys and all of my passphrases.

> let's say you have an account on and one on It
> may make some kind of sense to your workflow for you to keep the
> private key you use to access in your home directory on

If you do this, you're doing it wrong.


Richard Jones, Virtualization Group, Red Hat
virt-p2v converts physical machines to virtual machines.  Boot with a
live CD or over the network (PXE) and turn machines into Xen guests.

More information about the devel mailing list