Hi *, b@rry wrote:
passwordless auth is not a great idea.
having a passphrase while painful, is no less painful than a password and helps you...
WinSCP, Putty (pagent) allows you to cache passphrases so you don't have to re-enter them all the time.
Enter it once, at least if your machine is stolen, the password will no longer be cached, so the home box is still safe.
And you can run specific commands using the Key. (and only them.) And you can delete the Public-Key on the Server any time. (What you should do if ya Laptop is stolen.) You can use multiple Keys with multiple Passphrases on a single (shared) Account. (No shared Password!) And last but not least: There is something called scponly. Works like a charm ;-)) Dirk TRIA IT-consulting GmbH Joseph-Wild-Straße 20 81829 München Germany Tel: +49 (89) 92907-0 Fax: +49 (89) 92907-100 http://www.tria.de -------------------------------------------------------- working hard | for your success -------------------------------------------------------- Registergericht München HRB 113466 USt.-IdNr. DE 180017238 Steuer-Nr. 802/40600 Geschäftsführer: Richard Hofbauer kaufm. Geschäftsleitung: Rosa Igl -------------------------------------------------------- Nachricht von: Dirk.Schreiner@tria.de Nachricht an: b@rry.co.za, rjoffe@yahoo.com, suse-security@suse.com # Dateianhänge: 0 Die Mitteilung dieser E-Mail ist vertraulich und nur für den oben genannten Empfänger bestimmt. Wenn Sie nicht der vorgesehene Empfänger dieser E-Mail oder mit der Aushändigung an ihn betraut sind, weisen wir darauf hin, daß jede Form der Kenntnisnahme, Veröffentlichung, Vervielfältigung sowie Weitergabe des Inhalts untersagt ist. Wir bitten Sie uns in diesem Fall umgehend zu unterrichten. Vielen Dank The information contained in this E-Mail is privileged and confidental intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient or competent to deliver it to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this E-Mail is strictly prohibited. If you have received this E-Mail in error, please notify us immediately. Thank you