[NBLUG/talk] public key ssh troubles - update

ME dugan at passwall.com
Tue Jul 15 12:39:00 PDT 2003


It is really good that you have chosen to include what worked for you like
this-- it will help others users who search and happen to find your
solution.

Thanks!
-ME

Bob Blick said:
> In case anyone is still interested in this thread, I've compiled my own
> directions how to make password-less SSH work.
>
> Note that this still does not work between the two machines I need it to,
> and I'm more and more convinced it's bugs in the ever-changing versions of
> OpenSSH.
>
> Anyway, here's the cheat sheet I made:
>
> No-Password SSH (SSH with Public Key Authorization)
>
> Basically the public keys from the client machine must reside in the
> authorized_keys file of the server machine.
> Public keys from many machines can reside in that file.
>
> On the machine you want to ssh from(client):
>
> Create a .ssh directory off your home directory if there isn't one
> already.
>
> Change to that directory and enter:
> "ssh-keygen -t dsa" then just hit enter for all the defaults.
>
> Do the same with:
> "ssh-keygen -t rsa"
>
> Copy id_dsa.pub and id_rsa.pub to the machine you want to ssh
> into(server).
>
> Create .ssh directory in your home directory there if it doesn't exist.
>
> Don't copy those files into .ssh because you might overwrite that
> computer's public keys.
>
> Append these two files into ~/.ssh/authorized_keys:
> "cat id_dsa.pub >> .ssh/authorized_keys"
> "cat id_rsa.pub >> .ssh/authorized_keys"
>
> If it's an old linux box the file is called authorized_keys2 so make a
> copy just in case:
> "cat id_dsa.pub >> .ssh/authorized_keys2"
> "cat id_rsa.pub >> .ssh/authorized_keys2"
>
> You can delete these id_rsa.pub and id_dsa.pub files now.
>
> Note that this example uses both rsa and dsa keys.
> It increases the chance that the two machines may settle on something
> compatible.
>
> Give it a try and see if ssh stops asking for a password ;-)
>
>
> _______________________________________________
> talk mailing list
> talk at nblug.org
> http://nblug.org/mailman/listinfo/talk
>
>




More information about the talk mailing list