An alternative: give out a public key, but restrict it to run e.g. reboot only. ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		JoachimSchipper on July 25, 2011 \| parent \| context \| favorite \| on: Who's your SSH buddy? An alternative: give out a public key, but restrict it to run e.g. reboot only. Put something like the following in your ~/.ssh/authorized_keys: `command="/sbin/reboot",no-agent-forwarding,no-port-forwarding,no-pty,no-user-rc,no-X11-forwarding ssh-rsa AAAAB3Nza...LiPk== user@example.net` See sshd(8) "AUTHORIZED_KEYS FILE FORMAT" for details.

bostonvaulter2 on July 25, 2011 [–]

I think you mean give out a private key.

ars on July 25, 2011 | [–]

No, he actually means get a public key.

You should never be giving out private keys, people need to generate those themself!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact