Hiding password when loggin into dropbear

makem

makem

Member
#1
#1
I have changed my password but it occurred to me that this is visible when typed in. I was wondering if it was possible to hide the input without a lot of work for the clever people. In crowded internet cafes it seems as soon as a foreigner walks in everyone wants to know what he/she is doing.
 
S

Sam Widges

Active Member
#2
#2
Don't use keyboard authentication, use key authentication (as per the setup we configured). Even if they see the password, they would have to have the contents of the USB key that you store the key on to get in to your Humax. Never save the private key to any machine that is not yours.
 
OP
OP
makem

makem

Member
#3
#3
Yes, I know what you mean but I was thinking that is would avoid remembering one more password because using an existing password (used for other purposes) would be revealing that.

It was just a thought, I appreciate that you could just add a few humax related chars to change the remembered one.

Did you find time to see if dropbear can be configured to reduce it's consumption of cpu?
 
Black Hole

Black Hole

May contain traces of nut
#4
#4
I don't think I'm revealing too much to say that I remember an algorithm rather than a password - the secret means by which I construct the password given the site or whatever I'm logging into.
 
S

Sam Widges

Active Member
#5
#5
makem said:
Yes, I know what you mean but I was thinking that is would avoid remembering one more password because using an existing password (used for other purposes) would be revealing that.
Click to expand...
I'm really not sure what you mean there - are you talking about reusing a password that you use elsewhere? The use of keys on SSH overcomes many password problems because it is a 2-factor scheme, i.e. something that you know and something that you have. Even is someone has your password for your key, they still can't get in because your authentication key should be on your USB stick.

makem said:
Did you find time to see if dropbear can be configured to reduce it's consumption of cpu?
Click to expand...
The 'renice' command is installed (at least it is on my machine, so it's in one of the packages, if not by default). Find the process ID of the dropbear process, 'ps -w | grep dropbear' will show you that in the first column. I suggest that you do this for all dropbear IDs, as one will be the server and any others will tally up with each of your SSH connections. For each ID, try 'renice -n 20 <id>' and then try your transfer. You will probably have to start the SFTP session and then SSH in to achieve this, to ensure that you deprioritise the correct process.
 
You must log in or register to reply here.
Top