Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id ; Sat, 9 Feb 2002 19:59:56 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id ; Sat, 9 Feb 2002 19:59:36 -0500 Received: from eriador.apana.org.au ([203.14.152.116]:56074 "EHLO eriador.apana.org.au") by vger.kernel.org with ESMTP id ; Sat, 9 Feb 2002 19:59:31 -0500 Date: Sun, 10 Feb 2002 11:59:13 +1100 To: Jeff Garzik Cc: linux-kernel@vger.kernel.org Subject: Re: ssh primer (was Re: pull vs push (was Re: [bk patch] Make cardbus compile in -pre4)) Message-ID: <20020210005913.GA1993@gondor.apana.org.au> In-Reply-To: <3C65C4C5.C287A3@mandrakesoft.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3C65C4C5.C287A3@mandrakesoft.com> User-Agent: Mutt/1.3.25i From: Herbert Xu Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org On Sat, Feb 09, 2002 at 07:54:29PM -0500, Jeff Garzik wrote: > Herbert Xu wrote: > > > > Setup your key with an empty passphrase should do the trick. > > Ug. no. That is way way insecure. > > Most modern distros have an ssh-agent running as a parent of all > X-spawned processed (including processes spawned by xterms). So, one > only needs to run > ssh-add ~/.ssh/id_dsa ~/.ssh/identity > once, and input your password once. After that, no passwords are > needed. This is fine for interactive use. But for a daily cron job, it's just as insecure as no passphrases at all. -- Debian GNU/Linux 2.2 is out! ( http://www.debian.org/ ) Email: Herbert Xu ~{PmV>HI~} Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/