From owner-FreeBSD-tech-jp@jp.freebsd.org  Thu Jun 24 23:40:31 1999
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id XAA21641;
	Thu, 24 Jun 1999 23:40:31 +0900 (JST)
	(envelope-from owner-FreeBSD-tech-jp@jp.FreeBSD.org)
Received: from titanium.yy.ics.keio.ac.jp (titanium.yy.ics.keio.ac.jp [131.113.47.73])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id XAA21636
	for <FreeBSD-tech-jp@jp.freebsd.org>; Thu, 24 Jun 1999 23:40:31 +0900 (JST)
	(envelope-from sanpei@sanpei.org)
Received: from lavender.yy.cs.keio.ac.jp (ppp109.dialup.st.keio.ac.jp [131.113.27.109])
	by titanium.yy.ics.keio.ac.jp (8.8.8+3.0Wbeta13/3.7W) with ESMTP id XAA25491
	for <FreeBSD-tech-jp@jp.freebsd.org>; Thu, 24 Jun 1999 23:40:29 +0900 (JST)
Received: (from sanpei@localhost)
	by lavender.yy.cs.keio.ac.jp (8.9.3/3.7W) id XAA47155;
	Thu, 24 Jun 1999 23:40:27 +0900 (JST)
Message-Id: <199906241440.XAA47155@lavender.yy.cs.keio.ac.jp>
To: FreeBSD-tech-jp@jp.freebsd.org
X-Mailer: Mew version 1.70 on Emacs 19.34.1 / Mule 2.3
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Thu, 24 Jun 1999 23:40:26 +0900
From: MIHIRA Sanpei Yoshiro <sanpei@sanpei.org>
Reply-To: FreeBSD-tech-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990610
X-Sequence: FreeBSD-tech-jp 2294
Subject: [FreeBSD-tech-jp 2294] [ssh, passphrase] how to hide passphrase for ssh-agent.
Errors-To: owner-FreeBSD-tech-jp@jp.freebsd.org
Sender: owner-FreeBSD-tech-jp@jp.freebsd.org
X-Originator: sanpei@sanpei.org

  FreeBSD $B8GM-$NOC$G$OL5$$$N$G$9$,(B, $BE,Ev$JJ9$1$k>l=j$rCN$i$J$$$N$G(B, 
$B$3$A$i$G<ALd$7$^$9(B. $BE,Ev$JJ9$1$k>l=j(B($B%a!<%j%s%0%j%9%H(B)$B$N>pJs$J$I$G$b(B
$BNI$$$N$G$h$m$7$/$*4j$$$7$^$9(B. 

ssh-add $B$K?)$Y$5$;$k(B passphrase $B$N9%$^$7$$J]B8$NJ}K!$rC5$7$F$$$^$9(B.

  ssh-1.2.26 $B$H(B PPP $B$r;H$C$F(B VPN $B$r$O$C$F$$$k$N$G$9$,(B. 

	o PPP over SSH $B$G(B VPN $B$r$O$C$F$$$k(B
	o SSH $B$N@\B3$K$O(B RSA $B$N(B authentication $B$rMQ$$$F$$$^$9(B. 
	o passphrase $B$O(B ssh-agent $B$rA0$b$C$FF0$+$7$F(B
	  ssh-add $B$GEPO?$7$F$$$^$9(B. 
	o $B@\B385$O(B, NAT $B4D6-$NCf$@$C$?$j$9$k$N$G(B, 
	  IP $B%"%I%l%9$K$h$kG'>Z$O;H$($^$;$s(B.
	
  $B%^%7%s$,(B reboot $B$7$?$H$-$K$b<+F0E*$K(B VPN $B$,I|5l$9$k$h$&$K$7$?$$$N(B
$B$G$9$,(B, passphrase $B$O$I$N$h$&$KJ]B8$9$k$N$,9%$^$7$$$G$7$g$&$+(B? $B$^$?(B
$B$O(B, $B2?$+NI$$(B ssh $B$NG'>ZJ}K!$O$J$$$G$7$g$&$+(B?

  $B$^$?$O(B, $BE,@Z$J<ALd$G$-$k%a!<%j%s%0%j%9%H$O$I$3$+$*65$(2<$5$$(B. 

  $B8=:_$O(B, PPP $B$r5/F0$9$k(B shell script $B$N%Q!<%_%C%7%g%s$r2<5-$N$h$&$K(B
$B@_Dj$7$F(B, $B$=$N%7%'%k%9%/%j%W%HFb$K@8$G(B passphrase $B=q$$$F$$$^$9(B.

	o chown root vpn.sh
	o chmod 700 vpn.sh

# $B$3$NLdBj$,$"$k$N$G(B, PPP over SSH $B$N;v$rJ8>O$+=PMh$J$$$G$$$^$9(B :-<
# $B$b$A$m$s(B, $B$J$s$i$+$NNI$$G'>ZJ}<0$NDs0F$G$bNI$$$G$9(B :-)

MIHIRA Sanpei Yoshiro
