Re: New ssh v2 and authentication

["Gary Hennigan" <glhenni@sandia.gov>]

"Bill Wohler" <wohler@newt.com> writes:
> "Gary Hennigan" <glhenni@sandia.gov> writes:
> > I'm a bit confused by the fact that OpenSSH now defaults to using
> > version 2. How do I use ssh-agent as I have in the past to do
> > password-less logins?
>   
>   I posted a bug about the inconsistency, but apparently the "upstream
>   authors" are dead set against making the utilities consistent. So,
>   what to do...
> 
>   You've probably already figured it out since you were on the right
>   track. But if not:
> 
> > In the past I'd  do this once with my pass phrase:
> > 
> > % ssh-keygen
> > <blah,blah,blah>
> 
>   Now you run "ssh-keygen -t rsa"
> 
> > and copy the contents ~/.ssh/identity.pub to the remote machine
> > ~/.ssh/authorized_keys.
> 
>   Now you copy the contents of ~/.ssh/id_rsa.pub to the remote
>   machine's ~/.ssh/authorized_keys2.
> 
> > then when I log in to my machine, which runs my window manager via
> > ssh-agent, I'd do
> > 
> > % ssh-add
> > <blah,blah,blah>
> 
>   Now you do "ssh-add ~/.ssh/id_rsa.pub".
> 
>   What were those upstream authors thinking?

That did the trick! The worst part about it is there's no mention of
this in the man page. It talks about using identity.pub as default but
nothing about specifying a different file.

>   p.s. Now that you're running version 2, you may still need to get to
>   version 1 hosts. In this case, add this to your ~/.ssh/config:
> 
>     remote-host-still-running-version1.domain
>             Protocol 1

Got it, and thanks again!
Gary