On Thu, Sep 13, 2001 at 09:44:06AM -0500, Cesar Mendoza wrote: > That is the setup I have (a especial key just for the cronjob, but since > it is runing under my user name, I like to use ssh-agent to add my other > keys, then delete them when the session is over), but I want the key to > have passphrase, because the moment I shutdown ssh-agent everything is > secure again, with the passphrase-less key you are insecure all the time > no matter what until you add a passphrase again. For example if I reboot > my machine I know that I'm secure until I start ssh-agent, with the > other option you don't.
You can make multiple keys you know. ssh-keygen -f whateveriwant. Then use the -i option on ssh and command= in the authorised keys file at the other end. No passwords required and basically uncrackable and leaves your normal ssh key secure. -- Martijn van Oosterhout <kleptog@svana.org> http://svana.org/kleptog/ > Magnetism, electricity and motion are like a three-for-two special offer: > if you have two of them, the third one comes free.
