Re: SSH Passphrase
From: Devdas Bhagat (firstname.lastname@example.org)
Date: Thu, 6 Mar 2003 03:58:13 +0530 From: Devdas Bhagat <email@example.com> To: Stefan Lesicnik <firstname.lastname@example.org>
On 05/03/03 23:06 +0200, Stefan Lesicnik wrote:
> I have accomplished this by generating a dsa key without a passphrase.
> Although this works I am worried about the security concerns of doing
> this? (Without a passphrase, how does it authenticate? Based on the
> machines dsa key which was made from machine specific entropy?)
The machine keys authenticate hosts. The user keys you generated
authenticate users (in this case, the user your script runs as).
> I know of programs such as ssh-agent, but these require you to enter a
> passphrase at the beginning of the session which it then remembers, this
> isnt possible as it is non-interactive in my case. Does anyone have any
> ideas or comments?
You need to give the passphrase once at boot.