That could be a good thing ... "I didn't download all these movies and music, someone ssh'd into my computer and did it!"

More seriously, why not password protect that key? I recently switched to using password protected ssh keys for exactly that reason... it's a bit of a pain to use ssh-agent all the time, but I find that I feel a lot safer.

My work bought me a new Macbook Pro, which I wiped and reinstalled the OS. I take it home with me every day, and I'm paranoid enough to always lock my screen whenever I walk away (it's nice to have a hotkey to lock the desktop).

So I'm pretty confident that none of my co-workers have accessed my laptop and obtained my private key. My router only accepts SSH on a specific port (something like 16666 or some other) and it denies all SSH requests that don't already have a key pair set up.

The router forwards that port to 22, through which I connect to my home computer.

It's very possible that I've forgotten something and have already been hacked, but I never do anything illegal from that work computer anyway (I just want to use it to remain anonymous ).

If you guys have suggestions on how to be more secure, I'm all ears. I figure you can always be paranoid, but can you be paranoid enough?

If you have a Mac, thanks to the absurd hyper-valuation of mac products (both new and as old as the Apple II!), you're biggest problem with your Mac is it being physically stolen and sold at a pawn shop/flea market/directly-to-college-kids. The computer itself is a thousand times more valuable and easy to access than anything you might have on your computer.

That's what I'm getting at. Security is application dependant.

My laptop is a lot harder to steal:

http://oldcomputers.net/pics/compaqI.JPG