On Tuesday 21 March 2006 20:04, Gordon Messmer wrote: > Anne Wilson wrote: > > OK - so something else, somewhere, must have been starting ssh-agent > > without those variables. I rebooted, and no longer get the messages I > > saw before. I am asked for the password, though, every time I transfer > > files. There doesn't seem to be a conf file where you can set the key to > > remain active for a specific time, as there is with gpg. > > These are also good resources, if you'd like to learn more about the SSH > agent: > > http://www-128.ibm.com/developerworks/library/l-keyc.html > http://www-128.ibm.com/developerworks/linux/library/l-keyc2/ > http://www.gentoo.org/proj/en/keychain/ > Thanks, I'll take a look at them. > I dislike keychain, personally, but if you find that it's secure > *enough* for your environment, then it may be useful. > > I prefer to use ssh keys with no passphrase, bound to a single command > on the remote host using this syntax: > > command="do something specific" ssh-rsa .... I want it to be able to do a scripted rsync when I'm busy with something else, so keys seem the best answer - certainly preferable to having passwords in a plain text file. Anne
Attachment:
pgpisenc5o5Lx.pgp
Description: PGP signature
