On Wed, 2007-02-28 at 09:55 -0500, Roberto C. Sanchez wrote: > Ahh. That's what I was afraid of. Having ssh keys without a passphrase > is convenient, but very insecure. You are better off without the keys. > For the longest time I did not understand that, then some kind soul on > this list pointed to ssh-agent and keychain. Very minor inconvenience > (enter the passphrase once when you login), and *much* more secure.
Another great package is libpam-ssh, unlocking your ssh keys at login time, meaning you will only need to type a password once. -- Cheers, Sven Arvidsson http://www.whiz.se PGP Key ID 760BDD22
signature.asc
Description: This is a digitally signed message part
