Package talk:OpenSSH

Revision as of 22:35, December 27, 2014 by Threesixes (Talk | contribs) (Threesixes moved page Talk:SSH to Package talk:OpenSSH: because heretics)

keys

Passwordless Authentication

Client

on your client run

# ssh-keygen -t rsa

then hit enter like 5 times to generate your key move the client ~/.ssh/id_rsa.pub to the server user your logging in as ~/.ssh/authorized_keys

Server

useradd a user

then place clients id_rsa.pub file into the new users ~/.ssh/authorized_keys

Single Machine Testing

# ssh-keygen -t rsa

enter 5 times

# mv ~/.ssh/id_rsa.pub ~/.ssh/authorized_keys
# ssh localhost


Intrusion Prevention

ssh is a commonly attacked service. sshguard & fail2ban monitor logs and black list remote users who have repeatedly failed to login.