this post was submitted on 16 Sep 2025
519 points (98.7% liked)

Programmer Humor

26373 readers
1313 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS
anzo@programming.dev
Feyter@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev
519
GitHub auth (lemmy.world)
submitted 1 day ago by skepller@lemmy.world to c/programmer_humor@programming.dev
37 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[–] jonjuan@programming.dev 32 points 1 day ago (3 children)

encrypt them with a password if you wish.

SSH keys without passphrases are just fancy credential files sitting in your .ssh/ directory, basically like writing your passwords on paper and leaving it in your desk drawer.

[–] tauonite@lemmy.world 7 points 20 hours ago

TIL some people store SSH keys unencrypted

[–] ThunderQueen@lemmy.world 4 points 1 day ago

I had mine on paper for years before i learned about Keepass. I trusted it more than a cloud based manager because someone would have to physically be in my room.

I am a lot more careful these days but that is not beyond the pale for a lot of folks haha

[–] rumba@lemmy.zip 3 points 2 hours ago

but they require chmod 400 and they're ideally in on an encrypted disk

So the desk drawer is locked and the codes are Luks encrypted.

And for critical stuff, you should also have a password on the key.

If your ssh keys are like a passwords on paper in a drawer, you're doing it wrong.