On Wed, Sep 17, 2003 at 10:30:05AM -0700, Vineet Kumar wrote: > * Andy Firman ([EMAIL PROTECTED]) [030917 10:18]: > > I have never used ssh-add but I am doing the same thing you are > > and I used this very nice how-to that you may find useful: > > > > http://killyridols.net/rsyncssh.shtml > > Careful with that one. I just took a glance at it, and it recommends > using an unencrypted private key without a forced command on the remote > host's authorized_keys. This isn't _all_ bad, but I'd say it could be > better, by adding some options in the remote host's authorized_keys to > prevent this key from being used for anything but rsync, and only from a > specified host. I think I wrote up something about this on this list a > while back; try http://google.com/search?q=vineet+rsync+authorized_keys > . If you can't find anything, let me know and I'll write it again.
I would also suggest using keychain (there's a version in stable, but it might be worth checking out the latest at http://www.gentoo.org/proj/en/keychain.xml). It will store the ssh-agent info in a file, and the cron job can source the file before it begins. That way you don't need a passwordless private key. Rob -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
