On Wed, 3 Oct 2001, Vinson Armstead - PA wrote:
[..]
> One other question concerning passpharse...
>
> The purpose of using a passpharse is to provide some extra security for the
> identity file used with the SSH client?
>
> I do not have to use a passpharse with generating the key set but it does
> not seem like a bad idea???
>
Passphrases are always a good thing. If a user's machine that holds
the private key gets comprised then you run the risk of being comprised
yourself unless the private key is encrypted with a passphrase.
There are only a few cases where I don't use passphrases on private keys.
Mainly because I don't wish to fight with ssh-agent with automated nightly
tasks, but the machines in questions in this case are in a semi-secure
environment so I feel conformable with the risk.
- Ben
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
