On 22 Dec 2000 10:45:42 +1100, Crossfire wrote:
> uh, the ssh and sshd manpages document `authorized keys'.
Which don't solve the problem of having to type in passwords for each
connection, unless you use null passphrases.
> > man ssh-agent
> >
> > PS: Yes, this is a Better Way.
>
> No it isn't.
>
> ssh-agent has been responsible for a number of security problems over the
> years. I don't/won't use it for that reason.
Name three - remotely exploitable only, please. Complaining about past
local exploits when the alternative is unpassworded identities just
boggles my mind. Or do you mean that the concept is absolutely
terrifying and there damn well *should* have been more security problems
with it? If so, I absolutely agree, which is why I wrote keymgr (
http://www.rcpt.to/keymgr/ ).
m.
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
