[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#112020: ITP: keychain -- An OpenSSH key manager

On Thu, Sep 13, 2001 at 09:44:06AM -0500, Cesar Mendoza wrote:
> That is the setup I have (a especial key just for the cronjob, but since 
> it is runing under my user name, I like to use ssh-agent to add my other 
> keys, then delete them when the session is over), but I want the key to 
> have passphrase, because the moment I shutdown ssh-agent everything is 
> secure again, with the passphrase-less key you are insecure all the time 
> no matter what until you add a passphrase again. For example if I reboot 
> my machine I know that I'm secure until I start ssh-agent, with the 
> other option you don't. 

You can make multiple keys you know. ssh-keygen -f whateveriwant. Then use
the -i option on ssh and command= in the authorised keys file at the other

No passwords required and basically uncrackable and leaves your normal ssh
key secure.

Martijn van Oosterhout <kleptog@svana.org>
> Magnetism, electricity and motion are like a three-for-two special offer:
> if you have two of them, the third one comes free.

Reply to: