Date: Fri, 27 Feb 1998 17:36:41 +0100 From: Eivind Eklund <eivind@yes.no> To: Nate Williams <nate@mt.sri.com> Cc: cvs-committers@FreeBSD.ORG Subject: Re: cvs commit: CVSROOT avail Message-ID: <19980227173641.18702@follo.net> In-Reply-To: <199802271623.JAA04203@mt.sri.com>; from Nate Williams on Fri, Feb 27, 1998 at 09:23:57AM -0700 References: <19980227101302.39170@follo.net> <472.888572485@time.cdrom.com> <199802271615.JAA04081@mt.sri.com> <19980227171824.59113@follo.net> <199802271623.JAA04203@mt.sri.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Feb 27, 1998 at 09:23:57AM -0700, Nate Williams wrote: > > > > Yes, ssh-agent is a good idea. Starting it on your window manager is, > > > > however, not such a good idea since it won't include any of the > > > > clients in your .xsession/.xinitrc and some of those are usually > > > > xterms in the typical scenario. Far better to have (assuming that > > > > you're using xdm and .xsession): > > > > > > What does ssh-agent do? I've never used it, nor had any reason to. > > > > It proxies authentication requests, so you don't have to type your > > password (or private key passphrase) when using ssh to login > > somewhere. Very convenient if you do a lot of remote work (which I > > do). > > Ahh, so if I don't have a passphrase (shhhhh), then it doesn't buy me > anything? It can do multi-level proxying, so if you ssh to freefall and then ssh to hub from freefall, you still won't have to type your password. Whether you like this or not is up to you; it does it _quietly_, which I don't really like - it means that somebody that crack freefall also can crack the rest of my accounts. Nasty. You can disable it with $ echo "ForwardAgent no" >> ~/.ssh/config Eivind. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980227173641.18702>