Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'SSH Tunneling with Panther Server' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
SSH Tunneling with Panther Server
Authored by: raider on Nov 09, '04 11:20:30AM

Hey, other stuff aside, this hint is worth it just for the link to "SSH Tunnel Manager". One question, you say you set it up to automate the tunnel - do you use passwords with your ssh, and if so - can you store them in the keychain or something to automate?



[ Reply to This | # ]
SSH Tunneling with Panther Server
Authored by: jtratcliff on Nov 09, '04 03:10:31PM

check out SSHKeychain.... I just started using it. Seems pretty good. It's a GUI to ssh-agent that stores you ssh pass phrase in the keychain.

http://www.sshkeychain.org



[ Reply to This | # ]
SSH Tunneling with Panther Server
Authored by: raider on Nov 10, '04 08:34:20PM
I might be doing something wrong.... I set up the tunnel in SSHKeychain. It connects fine, only it pops up a window asking me for the password (the ssh password for the tunnel). Any time I connect to the tunnel it pops up the dialog asking me for the password.

In the SSHKeychain FAQ it says I should check the "store password in keychain" check box, but there is no such checkbox when it is asking me for the password...

Am I missing something obvious? Other than that the tunnel works fine... Just won't store the ssh password in my keychain.

[ Reply to This | # ]
SSH Tunneling with Panther Server
Authored by: iRideSnow on Nov 09, '04 03:31:49PM

As the other poster stated, you could use something like the SSHKeyChain app. However, I have public-private key pairs set up without passphrases. Yes, I realize this is less secure if someone were to steal my laptop. Of course, the moment I noticed my laptop was missing, I'd be deleting those private keys on my server.

Rob



[ Reply to This | # ]
SSH Tunneling with Panther Server
Authored by: jtratcliff on Nov 09, '04 09:49:43PM

Yeah I used to simply use key pairs w/ no pass phrases... I couldn't get myself to figure out ssh-agent. Plus without passphrases, it was just plain easy to connect.

Then one of our boxen got pwned... even though it looked like a script kiddie who got lucky and only did some warez trading, I figured I'd better delete and regenerate my keys. I had a bunch so it was a royal pain. Now I have many fewer machines set up w/ key pairs. I try to use just one as my main connection point and its keys are passphrased...

Using SSHkeychain is so painless that it's worth it. You start your ssh connection and the keychain password prompt pops up, give your keychain password and all your subsequent ssh connections use the agent so it's indistinguishable from the blank passphrase method.

The keychain does time out after awhile, though. So if you try to start a new ssh connection after the timeout, it prompts you again.

Not much added hassle for a bit more security.



[ Reply to This | # ]