Author Archives: Trevor Boyd Smith

Are there any negative consequences if you change your ssh config for a host with `UpdateHostKeys no`?

Posted on by

I recently came across a question on stackoverflow.com regarding gitlab.com and ssh config. The solution apparently is to update your ssh config with the following:
Host gitlab.com
UpdateHostKeys no

Unfortunately the author of the top… Continue reading Are there any negative consequences if you change your ssh config for a host with `UpdateHostKeys no`?

Why do the large majority of big organizations have "known bad" password policies?

Posted on by

I saw a recent password question on security.stackexchange “Is the NHS wrong about passwords?” The question is very specific about one organization but from what I’ve seen the same “known bad” password policies are used in mo… Continue reading Why do the large majority of big organizations have "known bad" password policies?