From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-172143-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 73FA71382FE
	for <garchives@archives.gentoo.org>; Tue, 12 Jul 2016 15:49:16 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 123AA21C074;
	Tue, 12 Jul 2016 15:49:06 +0000 (UTC)
Received: from mail-lf0-f44.google.com (mail-lf0-f44.google.com [209.85.215.44])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id B1CE121C012
	for <gentoo-user@lists.gentoo.org>; Tue, 12 Jul 2016 15:49:04 +0000 (UTC)
Received: by mail-lf0-f44.google.com with SMTP id q132so17523588lfe.3
        for <gentoo-user@lists.gentoo.org>; Tue, 12 Jul 2016 08:49:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=subject:to:references:from:message-id:date:user-agent:mime-version
         :in-reply-to:content-transfer-encoding;
        bh=ZWjGm58Qxw1/m3LD6//3Z78NSy53m/oDZd1dTYJr9/Q=;
        b=wj5RfpoXGX5zl/PIv5xr8o4nFocP3XMXLoUaLLkQsfggk6rGYsIVuzza8d+RKMUtm4
         j/SltRFA69u4RC/CjUfKovnL7J0mf1Udc53nYjDUE4lqQmrECKTkuTLeg938X9fQoKlD
         DhBaGIpreNK2W4CEGS4O/oWiue+uucZjgDlo3DWUZoppJ4TYuQ486cmPkdltWA4bmhVg
         SXDtU2Rx/DcToayrqLTDGGLVrOQtwlkspW+l57B6KTknbylByoKuM0CF282qwURBEV3a
         11qhRmfIZXFXqvzUo5fQOOgRrGgHqu1DkXwrNT1e+MWEuiDONrOv0CiFPMtJw5tVhzDQ
         rowA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20130820;
        h=x-gm-message-state:subject:to:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-transfer-encoding;
        bh=ZWjGm58Qxw1/m3LD6//3Z78NSy53m/oDZd1dTYJr9/Q=;
        b=KTBez4Ok+7YBbOwaEOKkS4HyosmK5c4Co9xe+fgssBsqc9pOxM+Bt36V/MFsW1cH3F
         saUx4ysHKqjOo/bMaAipPrw7o6gDlQBYtejOSW5DR3KwxcaQ2c4qhapJs8EDAwvFseb1
         hhE2B49r9wc04OBYqruLk3oELZIaCWy9zpCYa0i6igVPwBJqgP2R7YmSJWCyeuRQKcEN
         9tCJTCfSdF3RbNQyozswJD/2udTWX0i2ER3gLWvy12sEMhakgp6CRM15WgsRhEboI9EA
         B92GUlVMr4dXlDlvrgmidRh8OJgsjfk5yRM4/+6QfiR+Yt1kDu0JbuK14j/W78mV8ecV
         mXQQ==
X-Gm-Message-State: ALyK8tKJ92SfmxPC94hDiq2Xw+r7dCA4VQAWQwHHu5Kw2QVXVGnhOFc9BYuomwUu7t32jA==
X-Received: by 10.25.77.15 with SMTP id a15mr1703220lfb.179.1468338542639;
        Tue, 12 Jul 2016 08:49:02 -0700 (PDT)
Received: from [172.20.0.40] ([196.212.62.210])
        by smtp.googlemail.com with ESMTPSA id u14sm4114947lja.11.2016.07.12.08.49.00
        for <gentoo-user@lists.gentoo.org>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Tue, 12 Jul 2016 08:49:01 -0700 (PDT)
Subject: Re: [gentoo-user] Using SSH around the LAN
To: gentoo-user@lists.gentoo.org
References: <3204898.5HjzndUZvb@peak>
From: Alan McKinnon <alan.mckinnon@gmail.com>
Message-ID: <8edc0eb5-90be-97dd-0f46-cd064d14110f@gmail.com>
Date: Tue, 12 Jul 2016 17:48:33 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101
 Thunderbird/45.2.0
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
In-Reply-To: <3204898.5HjzndUZvb@peak>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-Archives-Salt: ee2200eb-9f67-48ae-8635-ec8369913682
X-Archives-Hash: d174a6cbe79b0a9d24e44123b56e489c

On 12/07/2016 17:42, Peter Humphrey wrote:
> Hello list,
> 
> I remember some time ago reading a guide on the Web to using ssh and keychain 
> to simplify routine tasks, but now I can't find it.
> 
> What I want to do is to use scp, ssh and rsync to copy files and directories 
> from one local machine to another, without having to submit a password on 
> every occasion. I want to be able to do this as myself, as portage or as root.
> 
> Is there a guide to setting up password-less authentication to enable me to do 
> this?
> 

http://www.funtoo.org/Keychain

Note that you, portage and root are 3 different users, so you must make
key pairs for reach on each source machine you will ssh from.

Then you need to add each of those user's public keys to each
destination user's authorized_keys file on each machine you want to ssh to.

That can be a lot of key copying :-) 3 x 3 x # of machines

Finally, on each machine you will ssh from and as each user who will do
the ssh'ing, you must run keychain at least once to store the key creds.
They should then persist until reboot, when you must run keychain again
for each user.

The idea is that a given user's keychain creds are valid over all that
user's login sessions on a machine. User's cannot share each other's
keychain


-- 
Alan McKinnon
alan.mckinnon@gmail.com