I have a personal Git repository that I don’t want publicly available for various reasons (mainly pride, since it is mainly half a page of scribbled lines), so I host it on a personal server.
I'm interested in any security thoughts between the following implementations (CentOS 5.6 host, if that matters):
- SSH using key-based authentication with keys using 20-character code phrases;
- WebDAV using Apache 2.2 and passwords using passwords with 20 characters.
There are many discussions about SO that are better, more convincing, etc., but they seem to be mostly functional. What would be more / less easy to break or touch? As I said, the information in the repo is not sensitive, but just a collection of bad code for a hobby. I'm just trying to find something to justify my decision besides Coke-vs-Pepsi, "which do you like best?" subjective debate.
Please rate any comments.
source
share