> From: Yves Dorfsman [mailto:y...@zioup.com] > > - you cannot password them
What are you talking about? Did you read the second half of my post? Yes, you absolutely can password protect ssh keys, even if you started with a non-protected key. What's a better idea, anyway, is that each user should generate his/her own personal private keypair, saved securely with their own password encryption, and a comment that uniquely identifies the user. That way, when you have employee turnover, you just remove his/her personal public key from the servers. If everyone is using the same keypair, you have no reliable way of locking out former users. _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
