It is a common misconception, that you are required to create a key without a passphrase in order to not type in a password when connecting to a remote host.
The trick is to use a key agent like Pageant for Windows or ssh agent for any OS running OpenSSH. You unlock your key to the agent by typing in your password once and don’t have to retype it for the rest of your session. Every current Linux and OS X starts an agent automatically on login, if not follow http://mah.everybody.org/docs/ssh.
The only reason to use passphrase-less keys is to connect machines with SSH. And then you should always restrict that key to forced-commands.
↧
By: Thorsten Tüllmann
↧
