Package talk:OpenSSH

From Funtoo
Revision as of 02:32, December 28, 2014 by Threesixes (talk | contribs) (update info prepping to move to main article)
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

keys

Passwordless Authentication

Client

on your client run

root # ssh-keygen -t rsa

Dialogs will be presented, you can press enter several times to accept defaults.

~/.ssh/id_rsa.pub will be generated. Copy or append the contents of this file to the servers ~/.ssh/authorized_keys

Server

Create a user, or select which user the client will be accessing the server as, then place clients id_rsa.pub file into the users ~/.ssh/authorized_keys

Single Machine Testing

root # ssh-keygen -t rsa

Press enter several times to accept default settings.

root # cp ~/.ssh/id_rsa.pub ~/.ssh/authorized_keys
root # ssh localhost


Intrusion Prevention

ssh is a commonly attacked service. app-admin/sshguard monitors logs, and black list remote users who have repeatedly failed to login.