Beefy Boxes and Bandwidth Generously Provided by pair Networks
XP is just a number
 
PerlMonks  

Re: SSH and passphrase

by The Mad Hatter (Priest)
on Aug 05, 2004 at 20:24 UTC ( #380375=note: print w/ replies, xml ) Need Help??


in reply to SSH and passphrase

What eclark says is the general solution, but recently I stumbled upon Keychain:

... a front-end to ssh-agent, allowing you to easily have one long-running ssh-agent process per system, rather than per login session. This dramatically reduces the number of times you need to enter your passphrase from once per new login session to once every time your local machine is rebooted.

More details are included at the link above (including security concerns), but it would allow a process (they give the example of cron, but any process should work) to use certain keys without having to know the passphrase.

You might consider this, as it would appear to be much more secure than a passphrase-less key.


Comment on Re: SSH and passphrase
Re^2: SSH and passphrase
by pzbagel (Chaplain) on Aug 05, 2004 at 20:40 UTC

    I never understood the novelty of Keychain. It just seemed like a fancy way of going:

    ssh-agent >.ssh-agent . .ssh-agent ssh-add
    and then running
    . .ssh-agent

    Everytime you login or start a job in cron. I guess keychain is slightly smarter than that. Only slightly...only slightly... I guess if I were actually using ssh-agent for my own regular logins it could help, but here it is reserved for cronjobs on servers that rarely get logged into let alone rebooted.

    Cheers

      I agree with you; it's really just a slightly better implementation of that above by making the process easier. I don't actually use it myself, even though I do use ssh-agent for my regular logins. *shrugs*

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://380375]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others drinking their drinks and smoking their pipes about the Monastery: (14)
As of 2014-07-28 15:02 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    My favorite superfluous repetitious redundant duplicative phrase is:









    Results (200 votes), past polls