On Fri, Aug 27, 2010 at 06:23:21PM -0500, Mike Miller wrote:
> > What about using an ssh key so you don't need to enter the password.
>
> (1) Security -- If a password is not needed, then that must mean that if
> an account is accessed by an unauthorized user, that user can access
> accounts on other machines that are accessible via ssh key. How much of a
> problem is this?
man ssh-agent
Don't forget to add a password to the ssh key.
> (2) Control -- Is this something that is allowed or disallowed by
> /etc/sshd_config? It looks like it. Can I restrict passwordless
> authentication using keys to certain users or to certain remote machines?
Yes.
> (3) Setup -- Is there a recommended guide on how to set this up? What
> options do I need to consider?
Read the man page and you'll get it.
> I definitely want to set this up between my home and office, both of which
> have static IP. I probably will want to use it even more than that, but I
> would proceed somewhat cautiously.
Cheers,
florin
PS: If you ever find yourself in Windows, putty has an ssh agent as
well.
--
Bruce Schneier expects the Spanish Inquisition.
http://geekz.co.uk/schneierfacts/fact/163
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://mailman.mn-linux.org/pipermail/tclug-list/attachments/20100827/25b73725/attachment.pgp