Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'SSH Tunneling with Panther Server' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
SSH Tunneling with Panther Server
Authored by: iRideSnow on Nov 09, '04 03:31:49PM

As the other poster stated, you could use something like the SSHKeyChain app. However, I have public-private key pairs set up without passphrases. Yes, I realize this is less secure if someone were to steal my laptop. Of course, the moment I noticed my laptop was missing, I'd be deleting those private keys on my server.

Rob



[ Reply to This | # ]
SSH Tunneling with Panther Server
Authored by: jtratcliff on Nov 09, '04 09:49:43PM

Yeah I used to simply use key pairs w/ no pass phrases... I couldn't get myself to figure out ssh-agent. Plus without passphrases, it was just plain easy to connect.

Then one of our boxen got pwned... even though it looked like a script kiddie who got lucky and only did some warez trading, I figured I'd better delete and regenerate my keys. I had a bunch so it was a royal pain. Now I have many fewer machines set up w/ key pairs. I try to use just one as my main connection point and its keys are passphrased...

Using SSHkeychain is so painless that it's worth it. You start your ssh connection and the keychain password prompt pops up, give your keychain password and all your subsequent ssh connections use the agent so it's indistinguishable from the blank passphrase method.

The keychain does time out after awhile, though. So if you try to start a new ssh connection after the timeout, it prompts you again.

Not much added hassle for a bit more security.



[ Reply to This | # ]