Re: Passwordless Authentication (was Re: How to reduce sid security)

To: debian-security@lists.debian.org
Subject: Re: Passwordless Authentication (was Re: How to reduce sid security)
From: Ted Roby <secalert@tedroby.com>
Date: Fri, 1 Aug 2003 03:09:59 -0700
Message-id: <[🔎] 4EDE6664-C408-11D7-A3BD-0003931D9B5A@tedroby.com>
In-reply-to: <[🔎] 1059729443.393.4.camel@Active2>


On Friday, Aug 1, 2003, at 02:17 US/Pacific, Matthijs Mohlmann wrote:

I have here also key login. It's very easy.

ssh-keygen -t dsa

You got now two files id_dsa and id_dsa.pub. You put the id_dsa.pub in
~/.ssh/authorized_keys2 and id_dsa on your client in ~/.ssh/id_dsa.Whenyou start now ssh on the client to the remote he take the id_dsa keyand
login. :-)

That's all

PS: Sorry for my bad english.



Don't forget to make sure you add the following to each respective file:

file:  ssh_config
add:
IdentityFile ~/.ssh/id_dsa

file: sshd_config
add:
PubkeyAuthentication yes
AuthorizedKeysFile      .ssh/authorized_keys

it's a good idea to add the following as well:
PermitRootLogin no
PasswordAuthentication no

Once you've generated the dsa key, and added these lines to the properconfig file, you should be good to go.As suggested, keep the id_dsa file encrypted, and use ssh-agent tomanage it.


Also try:
http://www.gentoo.org/proj/en/keychain.xml

Reply to:

References:
- Re: Passwordless Authentication (was Re: How to reduce sid security)
  - From: Matthijs Mohlmann <matthijs@active2.homelinux.org>

Prev by Date: Re: Passwordless Authentication (was Re: How to reduce sid security)
Next by Date: Re: How to reduce sid security
Previous by thread: Re: Passwordless Authentication (was Re: How to reduce sid security)
Next by thread: Re: Passwordless Authentication (was Re: How to reduce sid security)
Index(es):
- Date
- Thread