On Thu, 2001-11-08 at 17:46, Jeff Newmiller wrote: > The general idea is to put your public key on hostbox in > ~/.ssh/authorized_keys, and your private key on yourbox in > (via ssh-keygen). The debate enters when you choose whether or not > a passphrase on the private key... and ssh-agent is the answer that > you to enter this _once_ instead of every time. Failing to put any > passphrase on your private key means you don't have to remember one, > it also means anyone who gets their mitts on that file can pretend to > you with no further verification.
Passphrases are definitely recommended. And if you like ssh-agent, check out keychain at http://www.gentoo.org/projects/keychain. This program allows you to enter a passphrase that is effective across login sessions, so you can have cron jobs that use ssh. dave
msg00490/pgp00000.pgp
Description: PGP signature
