On Mar 2, 2014, at 11:55 AM, Tim Dunphy <bluethundr at gmail.com> wrote: > >> On Sun, Mar 2, 2014 at 1:26 PM, Alexander Dalloz <ad+lists at uni-x.org> wrote: >> >> Am 02.03.2014 19:16, schrieb Joseph Spenner: >> >>> Why not just use authorized_keys with an empty pass phrase? >> >> Because that is discouraged due to security. >> >> Alexander >> >> _______________________________________________ >> But having a script which automatically connects without the 'big ugly password' isn't a security risk? I don't follow. Also, you could further secure the authorized_keys file by only permitting the key to be used from a certain location, if you don't trust the security of your own private key.