Sshkey policy

From DISI
Jump to navigation Jump to search

Our SSH/SSL key policy is as follows. Please make sure all of these are true for all the machines you use:

  • all ssh keys must be password protected.
  • password on your ssh key must be different from your login password
  • do not use the same password on two clusters
  • do not use the same password for gmail and any cluster
  • do not give your password or sshkey to anyone, even friends, family, or other lab members

See the tips on using Ssh-agent for password-free passage among machines.