[index] [text page] [<<start] [<prev] [next>] [last>>]
Page 17: ssh-agent

Page 17

  
  ssh-agent
  Problems with Key-based authentication
  Key should be kept on disk protected by a passphrase.
  Requires you type your passphrase each time to use it.
  Seems little different than password-based login.
  Annoys users.
  Can't be called from automated processes like cron jobs.
  Bad solution: Remove the passphrase
  Hit 'enter' when setting the password when generating the key.
  Change or remove a passphrase using the following
       ssh-keygen -p -f /path/to/password/protected/key
  Unprotected keys can be stolen and used from any machine!
  Better solution:  Use ssh-agent.

Copyright 2004, Bri Hatch of Onsight, Inc.

Presented at LFNW - LinuxFest Northwest, Bellingham, Washington, Apr 2004

Presentation created using vim and MagicPoint.