Re: SSH again!

To: debian-user@lists.debian.org
Subject: Re: SSH again!
From: Bob Nielsen <nielsen@oz.net>
Date: Wed, 14 Jun 2000 16:23:38 -0700
Message-id: <[🔎] 20000614162338.A523@oz.net>
In-reply-to: <[🔎] 3947FCE6.4FBBCA50@iqrinc.com>; from tphan@iqrinc.com on Wed, Jun 14, 2000 at 04:45:10PM -0500
References: <[🔎] Pine.LNX.4.21.0006141641150.13057-100000@coimbra.oss.uswest.net> <[🔎] 3947FCE6.4FBBCA50@iqrinc.com>

On Wed, Jun 14, 2000 at 04:45:10PM -0500, Timothy C. Phan wrote:
> Hi all,
> 
>   Don't I suppose to get two prompts for two passwords?
>   One from the key and one from the login?
> 
>   Currently, I only need to enter the login password.
>   that is why I do not understand what are these keys
>   for?


If everything is working correctly, you should only be asked for your
passphrase (see 'man ssh-keygen').


However, from 'man ssh':

   If other authentication methods fail, ssh prompts the user for a pass
     word.  The password is sent to the remote host for checking; however,
     since all communications are encrypted, the password cannot be seen by
     someone listening on the network.


Most of the systems on which I have set up a .ssh/authorized_keys file
require only the key.  One requires the password instead, although the
key file is correct as far as I can tell.

Bob

> 
> Nitebirdz wrote:
> > 
> > On Wed, 14 Jun 2000, Ethan Benson wrote:
> > 
> > > On Wed, Jun 14, 2000 at 09:26:55AM -0500, Timothy C. Phan wrote:
> > > > hi All,
> > > >
> > > >   I'm still confused about the keys file.
> > > >
> > > >   I ran the ssh-keygen on machine-1 with passphrase
> > > >   and it created two files in
> > > >     $HOME/.ssh/identify
> > > >     $HOME/.ssh/identify.pub
> > > >
> > > >   I copy the identify.pub to machine-2:$HOME/.ssh/m1.key
> > > >   on machine-2,  I ran the command on machine-2 to logon
> > > >   machin-1:
> > > >
> > > >      ssh -i $HOME/.ssh/m1.key machine-1
> > > >
> > >
> > > put the public key in $HOME/.ssh/authorized_keys in order to allow
> > > logins using the associated private key.
> > >
> > >
> > 
> > Yeah, basically you need to rename that identity.pub file to
> > authorized_keys on their other end as far as I remember.  By the way, I
> > don't really know what you're trying to do but if you did enter a
> > passphrase you will not then be able to ssh or scp to that host without
> > entering a password.  I was just thinking that perhaps you're trying to
> > set up the whole thing so that you are not prompted for a password at all,
> > so you can run scripts remotely.  So, if that is the case keep in mind
> > that you do NOT need a passphrase.
> > 
> > --
> > Nitebirdz
> > http://www.linuxnovice.org
> > Tips, articles, news, links...
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null

-- 
Bob Nielsen, N7XY  (RN2)                   nielsen@oz.net
Bainbridge Island, WA                      http://www.oz.net/~nielsen

Reply to:

Follow-Ups:
- Re: SSH again!
  - From: Nathan E Norman <nnorman@canaris.midco.net>

References:
- Re: SSH again!
  - From: Nitebirdz <nitebirdz@uswest.net>
- Re: SSH again!
  - From: "Timothy C. Phan" <tphan@iqrinc.com>

Prev by Date: Kernel oops.
Next by Date: ABIT BP6 & UDMA-66: Support for Debian Linux
Previous by thread: Re: SSH again!
Next by thread: Re: SSH again!
Index(es):
- Date
- Thread