Date: Tue, 21 Jan 2003 18:09:37 -0600 From: Bob Willcox <bob@immure.com> To: "Michael K. Smith" <mksmith@noanet.net> Cc: questions list <freebsd-questions@freebsd.org> Subject: Re: ssh with public keys and no prompts...I can't get it to work! Message-ID: <20030122000936.GE91874@luke.immure.com> In-Reply-To: <5C19659C-2D9D-11D7-8983-003065CA9420@noanet.net> References: <20030121230003.GD91874@luke.immure.com> <5C19659C-2D9D-11D7-8983-003065CA9420@noanet.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jan 21, 2003 at 04:06:30PM -0800, Michael K. Smith wrote: > > On Tuesday, January 21, 2003, at 03:00 PM, Bob Willcox wrote: > > >On Tue, Jan 21, 2003 at 02:38:33PM -0800, Michael K. Smith wrote: > >> > >>Hello: > >> > >>Did you create your keys with no passwords, as in "ssh-keygen -t dsa" > >>then just hit return a couple of times instead of giving a password? > > > >No, I didn't try that yet...just did now and it works! Great! :-) What > >is the downside (if any) to not specifying a passphrase? > > Well, if someone got your private keys without a password, they could > use them to log in all over your network using just the scenario you > are using now. That's one reason to have rwx for the user only on the > .ssh directory. But, I think the likelihood of this is fairly small > (famous last words, I know). In this particular case that shouldn't be a real problem since these are simply test systems in a lab invironment and they will probably get reinstalled over within a few months anyway. :-) Bob > > Mike > > ------------------------------------------------------------------------ > -- > Michael K. Smith NoaNet > 206.219.7116 (work) 206.579.8360 (cell) > mksmith@noanet.net http://www.noanet.net -- Bob Willcox We seem to have forgotten the simple truth that bob@vieo.com reason is never perfect. Only non-sense attains Austin, TX perfection. -- Poul Henningsen [1894-1967] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030122000936.GE91874>