Package talk:OpenSSH

Revision as of 02:32, December 28, 2014 by Threesixes (Talk | contribs)

keys

Passwordless Authentication

Client

on your client run

# ssh-keygen -t rsa

Dialogs will be presented, you can press enter several times to accept defaults.

~/.ssh/id_rsa.pub will be generated. Copy or append the contents of this file to the servers ~/.ssh/authorized_keys

Server

Create a user, or select which user the client will be accessing the server as, then place clients id_rsa.pub file into the users ~/.ssh/authorized_keys

Single Machine Testing

# ssh-keygen -t rsa

Press enter several times to accept default settings.

# cp ~/.ssh/id_rsa.pub ~/.ssh/authorized_keys
# ssh localhost


Intrusion Prevention

ssh is a commonly attacked service. Sshguard monitors logs, and black list remote users who have repeatedly failed to login.