[LINK] Poorly Managed SSH Keys

Stephen Loosley stephen at melbpc.org.au
Mon Feb 24 14:18:36 AEDT 2014

Date: Sun, 23 Feb 2014 18:34:58 -0800
Subject: Re: [LINK] Poorly Managed SSH Keys
From: scott at doc.net.au
To: stephen at melbpc.org.au

On Sun, Feb 23, 2014 at 6:16 PM, Stephen Loosley <stephen at melbpc.org.au> wrote:

Poorly managed SSH keys pose serious risks for most companies

Three in four have no processes for managing keys that provide access to critical servers

By Jaikumar Vijayan (Computerworld (US)) 22nd February, 2014http://www.arnnet.com.au/article/538884/poorly_managed_ssh_keys_pose_serious_risks_most_companies/?fp=2&fpid=1

An article, based on a report, commissioned by and paid for by a company that just happens to sell products to help manage those keys...   Scott

Haha yes, perhaps somewhat akin to international malware stats via the antivirus producers.
However, i guess it doesn't necessarily mean it's not truly reflected in the wild. In my limited experience of this area this does ring true. So, could you Scott, or any Linker guestimate SSH key security with respect to company management? 

More information about the Link mailing list