[Fedora-packaging] Feedback on documentation

Toshio Kuratomi a.badger at gmail.com
Tue Jul 14 05:07:02 UTC 2009


On 07/12/2009 07:56 PM, Bruno Wolff III wrote:
> I am a new packager following:
> http://fedoraproject.org/wiki/PackageMaintainers/Join
> And read the following note:
> Running ssh-add before doing any cvs operations is a very good idea. It will save you from having to type your key password for every operation. You only have to run ssh-add once per session, it will remember it until you log out or reboot. If "ssh-add" reports "Could not open a connection to your authentication agent.", start a new shell under it using "exec ssh-agent bash".
> 
> However I was never asked for a password. I assume that my Fedora cert
> is just being picked up. Did I do something odd or is this note out of date?
> 
This is fedora-devel-list material.  What it probably means is that you
are not password protecting your ssh private key.  This is insecure (if
someone compromises your computer, they can pretend to be you for
checking things into cvs, logging onto other fedora computers, etc).  To
remedy the situation, use:

  ssh-keygen -p

-Toshio

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-packaging/attachments/20090713/79b5e0ef/attachment.sig>


More information about the Fedora-packaging mailing list