Securely Manage Server Accounts with Key-based Authentication
Using the same password for every account is simpler, but it can prove disastrous if an attacker compromises even a single server and accesses the user accounts.
Developers face a frequent dilemma: maintain a lengthy list of unique and complex passwords, or bet on the impenetrability of their clients' servers and reuse a single password, as necessary.
Since neither choice is really a winner, our colleagues at Web Developer's Virtual Library have presented an alternative approach, which not only completely removes the need for maintaining a password list, but also eliminates the need for log-in passwords altogether.
The answer is key-based authentication.