Package talk:OpenSSH

Revision as of 22:35, December 27, 2014 by Threesixes (Talk | contribs) (Threesixes moved page Talk:SSH to Package talk:OpenSSH: because heretics)


Passwordless Authentication


on your client run

# ssh-keygen -t rsa

then hit enter like 5 times to generate your key move the client ~/.ssh/ to the server user your logging in as ~/.ssh/authorized_keys


useradd a user

then place clients file into the new users ~/.ssh/authorized_keys

Single Machine Testing

# ssh-keygen -t rsa

enter 5 times

# mv ~/.ssh/ ~/.ssh/authorized_keys
# ssh localhost

Intrusion Prevention

ssh is a commonly attacked service. sshguard & fail2ban monitor logs and black list remote users who have repeatedly failed to login.