From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LKiKq-0000hX-VG for garchives@archives.gentoo.org; Thu, 08 Jan 2009 00:01:17 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id C7C98E04AB; Thu, 8 Jan 2009 00:01:14 +0000 (UTC) Received: from rv-out-0708.google.com (rv-out-0708.google.com [209.85.198.240]) by pigeon.gentoo.org (Postfix) with ESMTP id 9B13FE04AB for ; Thu, 8 Jan 2009 00:01:14 +0000 (UTC) Received: by rv-out-0708.google.com with SMTP id b17so9282687rvf.46 for ; Wed, 07 Jan 2009 16:01:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:sender :to:subject:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references :x-google-sender-auth; bh=/yi6U5scH7fiBwyaB3GOl6+M3u+87lwLA/G63X32ROE=; b=D6+oXcsomRiiMljaBS0MoNBXoNUxKS7TLJzwxy4f0b6WdLeQOfiG35ZpznFGV1C8fU tzwOE9JK2VsmetPLfNrxJEwD6+n4iI8rmK+m1w4JlpI9eVrZlyeQ5zbMFI1P2dNPw8+s sKQLCAeHbVRgL8/8JJ8p03VuoEtLBUn0gqOLs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:sender:to:subject:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references:x-google-sender-auth; b=iMbLIrRGwaKl6qNHti+CGOO9n4aveM/PB/gEQPMtt4UwbY8d+OIbQzNtesj5eIMo6G bSq6HdwCQGjFos1k4zjrSuJhdECKiVbOurYspx7Lnq7jjQ/AboS+5RRFxsXmWSRFs1Ij ZSX/1GpEEzfhMyEahr7DSEpv2qVdhKeTylobo= Received: by 10.140.127.20 with SMTP id z20mr11778226rvc.100.1231372874045; Wed, 07 Jan 2009 16:01:14 -0800 (PST) Received: by 10.140.199.10 with HTTP; Wed, 7 Jan 2009 16:01:14 -0800 (PST) Message-ID: <58965d8a0901071601t2530c8eds184dcba6acaa722@mail.gmail.com> Date: Wed, 7 Jan 2009 18:01:14 -0600 From: "Paul Hartman" Sender: paul.hartman@gmail.com To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: SSH login with both key AND password? In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <58965d8a0901071528u464c7aa7w8cd5bcfab7530c4e@mail.gmail.com> X-Google-Sender-Auth: 704dd0923cc90909 X-Archives-Salt: d020b90a-2042-4c97-a543-1d3e15c4f892 X-Archives-Hash: 9632e7bb3951561c7ee90eebde9559a7 On Wed, Jan 7, 2009 at 5:45 PM, Nikos Chantziaras wrote: > Paul Hartman wrote: >> >> Hi, >> >> Normally I'm using SSH with regular password login, and I've read >> about generating a keypair and having a password-less connection that >> way. Is there a way to require both the key AND a password? Basically >> if I put the key in my SSH client at work, I don't want a co-worker to >> be able to login to my home PC, or someone to grab my phone, etc. >> >> Is there a way to put a passphrase on the key (seperate from my user >> account password)? > > It is. It's even the default behavior when you create the key (openssh will > ask you for a password.) I guess I should have tried before asking! Every HOWTO/tutorial I googled seemed to really emphasize the "no more password entry!" aspect of key login. Thanks. Paul