Re: New ssh v2 and authentication

[Bill Wohler <wohler@newt.com>]

"Gary Hennigan" <glhenni@sandia.gov> writes:
> I'm a bit confused by the fact that OpenSSH now defaults to using
> version 2. How do I use ssh-agent as I have in the past to do
> password-less logins?
  
  I posted a bug about the inconsistency, but apparently the "upstream
  authors" are dead set against making the utilities consistent. So,
  what to do...

  You've probably already figured it out since you were on the right
  track. But if not:

> In the past I'd  do this once with my pass phrase:
> 
> % ssh-keygen
> <blah,blah,blah>

  Now you run "ssh-keygen -t rsa"

> and copy the contents ~/.ssh/identity.pub to the remote machine
> ~/.ssh/authorized_keys.

  Now you copy the contents of ~/.ssh/id_rsa.pub to the remote
  machine's ~/.ssh/authorized_keys2.

> then when I log in to my machine, which runs my window manager via
> ssh-agent, I'd do
> 
> % ssh-add
> <blah,blah,blah>

  Now you do "ssh-add ~/.ssh/id_rsa.pub".

  What were those upstream authors thinking?

  p.s. Now that you're running version 2, you may still need to get to
  version 1 hosts. In this case, add this to your ~/.ssh/config:

    remote-host-still-running-version1.domain
            Protocol 1

-- 
Bill Wohler <wohler@newt.com>  http://www.newt.com/wohler/  GnuPG ID:610BD9AD
Maintainer of comp.mail.mh FAQ and mh-e. Vote Libertarian!
If you're passed on the right, you're in the wrong lane.