Comment by fpoling
5 months ago
With an ssh agent and time-bounded key expiration one can have very strong password on the key that is convenient to use.
Also password managers like 1password or Bitwarden support ssh-agent protocol so one can have a master password that protects both stored passwords and keys.
How short of a time-bound do you use on your SSH keys?
It is set to 15 minutes due to specifics of automation scripts that we use so they can run uninterrupted.