Packet Timing and Data Leaks
Philipp Marek
philipp at marek.priv.at
Thu Aug 10 22:14:50 AEST 2023
>If you can/want to use a file then consider using a key instead.
>
>publickey authentication is non-interactive on the wire and the key is
>already unlocked so packet timing leaks nothing about your passphrase.
Well, I interpreted the original request as "needing a passphrase for non-ssh access" (like su, or local ipmi, etc).
If you can use a public/private key pair instead, of course that should be preferred.
More information about the openssh-unix-dev
mailing list