On Fri, Aug 31, 2001 at 11:17:59AM -0400, RJ Atkinson wrote:
> a prudent system
> administration strategy is to use both belt and suspenders
> -- so disabling RSA authentication and requiring passwords
> (preferably one-time passwords) inside the SSH channel.

I'm not sure if I'm reading you right here.  Are you saying that using
tunneled cleartext passwords is more secure/prudent than key-based
authentication?