Reminder that despite your private ssh keys being nicely tucked away in the .ssh folder of your very own home directory (where no-one can get at them, right?) they still need to be encrypted with a password.

(Just read an article about a hack that claimed to be benevolent and just research but in the process uploaded the .ssh folder, likely the .aws file, etc. Interestingly, the hack is not something the user could do much against.)