On 09/27/2010 10:46 PM, David C. Rankin wrote:
(1) create your keyset on you desktop with
ssh-keygen -t dsa
(here you will be prompted for a password: just hit return for no password) Just understand that this is where physical security become a bit important. If you don't secure your normal desktop machine with a password, somebody could break into your desktop and steal your private key and then be able to use it to gain access to your laptop. I don't know about you, but if somebody breaks into my computer system -- the private keys are probably the least I'm worried about. (not to mention, they only get the private key and have no idea how many boxes might have a public key that matches much less what their hostnames are) I add this because some say never create a passwordless keyset -- I say nonsense. That is what physical security is all about if they have physical access to your box, nothing is safe. All they have to do is boot with an install DVD and set /bin/bash as the shell and then change the root password anyway -- so having a passwordless public/private keyset is a non-issue on a scale of 1 to 'you've just been rooted'. Passwordless public/private keysets are designed to be setup this way. Yes, you can install some ssh-agent or keyagent app that causes you to only have to type a password once for a password protected private key, but I have found all these to be pains, especially if you use different desktops (gnome, kde3, kde4, enlightenment, etc..) -- David C. Rankin, J.D.,P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org