<html>Just curious<br><br>Does this fedora-list group exist to help users with their Linux problems<br>or as a soapboax for philosophical discussions of computer science principles?<br>
<br>
-----Original Message-----<br><br>
<br>
------------------------------<br>
<br>
Message: 13<br>
Date: Wed, 23 Jan 2008 14:16:26 -0800<br>
From: "Aldo Foot" <lunixer@gmail.com><br>
Subject: Re: Passing password in ssh<br>
To: "For users of Fedora" <fedora-list@redhat.com><br>
Message-ID:<br>
        <3d22fc520801231416k56951916j29a2c8658c94de71@mail.gmail.com><br>
Content-Type: text/plain; charset="iso-8859-1"<br>
<br>
On Jan 22, 2008 6:27 PM, Les Mikesell <lesmikesell@gmail.com> wrote:<br>
<br>
> Mikkel L. Ellertson wrote:<br>
> ><br>
> ><br>
> > While having a pass phrase (not password) on a ssh key is normally a<br>
> > good idea. But if you need to connect to a remote machine as part of a<br>
> > cron job, a key without a pass phrase, if set up properly, is not that<br>
> > big of a security risk.<br>
><br>
> I wouldn't say it's not a big risk - more like it is a risk that you<br>
> have to manage by controlling access to the account where the keys are<br>
> readable - and physical access to the media where they are stored.<br>
><br>
> --<br>
> Les Mikesell<br>
> lesmikesell@gmail.com<br>
><br>
><br>
Controlling access to the media storing the keys and accounts is of my<br>
greatest<br>
concern in particular if the system is located in some other city and<br>
someone<br>
else admins the machine.<br>
<br>
Maybe I'm too paranoid.<br>
<br>*************************************<br>
</html>