|[eclipse.org-committers] Storing private keys in Git|
You may have heard the story where hundreds of SSH private keys were stored in Github repositories. With the private key, anyone who knows the hostname and the user ID can access the target computer, unchallenged.
Someone has discovered SSH private keys on git.eclipse.org.
Since User IDs and server names are not at all hidden at eclipse.org, I'd like to remind you that it's extremely important to ensure you do not store your keys in Git repositories. Many eclipse.org committers have shell accounts, which could potentially be dangerous.
Thank you for being extra vigilant with the care of your keys.
Back to the top