[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Passwordless Authentication (was Re: How to reduce sid security)

On Friday, Aug 1, 2003, at 02:17 US/Pacific, Matthijs Mohlmann wrote:

I have here also key login. It's very easy.

ssh-keygen -t dsa

You got now two files id_dsa and id_dsa.pub. You put the id_dsa.pub in
~/.ssh/authorized_keys2 and id_dsa on your client in ~/.ssh/id_dsa. When you start now ssh on the client to the remote he take the id_dsa key and
login. :-)

That's all

PS: Sorry for my bad english.

Don't forget to make sure you add the following to each respective file:

file:  ssh_config
IdentityFile ~/.ssh/id_dsa

file: sshd_config
PubkeyAuthentication yes
AuthorizedKeysFile      .ssh/authorized_keys

it's a good idea to add the following as well:
PermitRootLogin no
PasswordAuthentication no

Once you've generated the dsa key, and added these lines to the proper config file, you should be good to go. As suggested, keep the id_dsa file encrypted, and use ssh-agent to manage it.

Also try:

Reply to: