On Wed, Sep 17, 2003 at 10:30:05AM -0700, Vineet Kumar wrote: > * Andy Firman ([EMAIL PROTECTED]) [030917 10:18]: > > I have never used ssh-add but I am doing the same thing you are > > and I used this very nice how-to that you may find useful: > > > > http://killyridols.net/rsyncssh.shtml > > Careful with that one. I just took a glance at it, and it recommends > using an unencrypted private key without a forced command on the remote > host's authorized_keys. This isn't _all_ bad, but I'd say it could be > better, by adding some options in the remote host's authorized_keys to > prevent this key from being used for anything but rsync, and only from a > specified host. I think I wrote up something about this on this list a > while back; try http://google.com/search?q=vineet+rsync+authorized_keys > . If you can't find anything, let me know and I'll write it again.
I should have mentioned that I personally always do this "inside" a VPN tunnel. Good point though...and thanks for the tip. I never even thought about the key not being encrypted. Some day when I can't use a VPN for some reason, I will look further into your recommendations. Andy -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
