Saturday, July 27, 2019

Passwordless SSH

Anyone doing it?

I'm sick of typing passwords. Even with "remember my password" features of SecureCRT, putty, etc. (which I refuse to use because I'm over-paranoid), it would still be a pain to update that thing.

I want to build a mini PKI environment, just for this purpose. I would put the root CA cert on all network devices, and issue my teammates and I a signed certificate from this CA. Then bam, passwordless!

I'm only curious from those already doing it -- is it worth the trouble? I intend to allow fallback to passwords in case someone dicks the PKI setup.



No comments:

Post a Comment