Re: [tlug] Making my LAN a passwordless zone

["Stephen J. Turnbull" <stephen@example.com>]

Keith Bawden writes:
 > On 2009/07/09, at 19:06, Phillip Tribble  
 > <ptribble@example.com> wrote:
 > >
 > > When you do ssh-copy-id, make sure that you do it like this:
 > >
 > > ssh-keygen -i ~/.ssh/id_rsa.pub root@example.com
 > 
 > Not sure if that is such a great idea. As root ?

There are other issues there, like the command syntax is wrong.
ssh-keygen has no non-option arguments.  It's optimized for
interactive use, and prompts for all optional arguments.  (I got that
wrong, too; what I should have written for generating the key is

    ssh-keygen -t rsa -f ~/.ssh/id_rsa

of course.)

I also don't understand the purpose of the "-i" flag here.  ISTM we
know that the key files are in OpenSSH format, but that flag's only
useful for *importing* non-OpenSSH keys.  It might make sense if you
were exporting the keys to a non-OpenSSH machine (say a Windows box),
but then the option you want is "-e".