Mikkel L. Ellertson wrote:
While having a pass phrase (not password) on a ssh key is normally a good idea. But if you need to connect to a remote machine as part of a cron job, a key without a pass phrase, if set up properly, is not that big of a security risk.
I wouldn't say it's not a big risk - more like it is a risk that you have to manage by controlling access to the account where the keys are readable - and physical access to the media where they are stored.
-- Les Mikesell [email protected]