Questions tagged [ssh-keys]
an authorization mechanism for SSH involving public-key cryptography.
797
questions
3
votes
2
answers
3k
views
Does Mac OS X Cache Private Keys for SSH?
I have SSH key-based authentication setup to connect to a remote server from my Macbook Air. The private key was originally stored in ~/.ssh/id_rsa, but I have since moved that file to a secure ...
0
votes
1
answer
250
views
setting up gitosis: avoiding duplicate user keys
i'm following this guide to setting up gitosis.
i run all this on the git server, including creating credentials for my user (in the git server) with the ssh-keygen -t dsa step
now, from some other ...
2
votes
1
answer
265
views
general ssh security - certificate authentication
I've used this article: http://developer.apple.com/library/mac/#documentation/MacOSXServer/Conceptual/XServer_ProgrammingGuide/Articles/SSH.html in order to help set up ssh certificates (I'm on mac os ...
1
vote
1
answer
93
views
LDAP for 8 machines and 4 users
I'm currently administering about 8 server machines running Ubuntu. Right now, the 4 people with authority to ssh to the systems all share the same private key. This was fine when it was two people ...
3
votes
3
answers
4k
views
Passwordless SSH not working
I have set up passwordless ssh authentication (via authorized_keys) numerous times successfully and with ease, usually on servers that did not have any custom ssh-related configuration changes prior ...
1
vote
2
answers
164
views
Is it possible to SSH a remote server using 2 different private keys for same user?
___ ___
| | (connecting using "hxsr") | |
| A | -----------------------------> P1 | B |
|___| -----------------------------> P2 |___|...
9
votes
2
answers
4k
views
SSH keys: why is id_rsa larger than id_rsa.pub?
My private key (~/.ssh/id_rsa) is a 1766-byte file, but my public key (~/.ssh/id_rsa.pub) is only 396 bytes in length. Why the massive difference? Is it because the private key is encrypted using AES? ...
15
votes
2
answers
13k
views
How to revoke an ssh certificate (not ssh identity file!)
I've generated an ssh certificate like this:
ssh-keygen -f ca_key # generate a ssh keypair for use as a certificate
generate a host key ssh-keygen -s ca_key -I cert_identifier -h host_key.pub
specify ...
34
votes
3
answers
28k
views
How to configure ssh client to use private keys automatically
I'm always running ssh with the -i parameter and it's a hassle to always type in the correct key for whatever host I'm connecting to.
Is there a config file or something (on Mac) to define which ...
1
vote
2
answers
544
views
Setting up local IP based filtering with OpenSSH on Ubuntu
Greetings,
the server admin for our company suddenly left, and left the rest of us IT folk somewhat clueless about Linux and setting up servers and such. The setup is as follows:
Our local server, ...
8
votes
5
answers
52k
views
ssh_exchange_identification: Connection closed by remote host
Firstly, I know that this question has been asked a million times, and I have read everything I can find and still cannot fix the problem.
i am encountering this issue when ssh'ing in from my mac to ...
7
votes
3
answers
7k
views
authorized_keys Environment Variables Not Setting Environment Variables
I have created the file ~/.ssh/environment in there I put:
LEVEL=0
When I run a script over ssh to get the environment variable level it returns 0 like it should.
In the authorized_keys file I have ...
1
vote
1
answer
694
views
Too Many/A Lot of Public SSH Keys
A new thing I have been tasked with trying/exploring is setting up a server that will essentially have 200 to 300 people ssh'ing into a single user to run a task. They might only need to do it once a ...
5
votes
4
answers
3k
views
OpenSSH on Ubuntu 10.10 (Maverick): should ~/.ssh/authorized_keys file be generated automatically?
I'm setting up public key authentication using this guide: https://help.ubuntu.com/community/SSH/OpenSSH/Keys.
The documentation talks about the ~/.ssh/authorized_keys file, but there is no ~/.ssh/...
1
vote
2
answers
562
views
xampp/php - rsync ssh public passwordless [closed]
How can I rsync from php on my development (win/xampp) machine to my testing (Ubuntu) LAMP server using ssh public passwordless key?
Thanks
10
votes
3
answers
17k
views
Process to move SSH server keys to new server
Going to be moving a server to new hardware in a new datacenter soon, and of course this means a new IP.
What is the correct process (if at all) to move the SSH keys from the original server to the ...
2
votes
1
answer
92
views
Resolve which public key user uses to access server
Is it possible to resolve, which public key is used to grant user access to a server?
For example, there are 5 public keys stored in ~/.ssh/authorized_keys file. I'd like to know which key has the ...
2
votes
2
answers
322
views
"Half" ssh authorization to a server with git repository
Currently I have purchased web hosting with ssh access.
I have created a git repository on it and if I set my public key in ~/.ssh/authorized_keys file, I have access to that repo, I can push/pull ...
2
votes
1
answer
1k
views
How to configure Centos 5.3 using OpenLDAP to store and serve SSH public keys?
I want to be able to manage all my users logins via OpenLDAP.
I am using Centos 5.3, OpenSSH 4.3p2-42 and OpenLDAP 2.3.43.
I have installed GOsa2.
Is there a GOsa plugin to manage the SSH keys in ...
0
votes
1
answer
1k
views
Unable to login to Amazon EC2 compute server
I am unable to login to the EC2 server.
Here's the log of the connection-attempt:
$ ssh -v -i ec2-key-incoleg-x002.pem [email protected]
OpenSSH_5.6p1, OpenSSL 0.9.8p 16 ...
8
votes
2
answers
11k
views
What is a good and safe way of sharing ssh-keypairs?
I have a few key-pairs, that are used as authentication, to ssh into my servers on the Amazon cloud. I rotate those certificates weekly, manually. My question is, I need to share the certificates with ...
2
votes
2
answers
1k
views
Cannot SSH into Ubuntu 10.10 running on EC2 as new user
Please help me understand how I can solve my SSH problem:
I can SSH into my EC2 instance running Ubuntu 10.10 'Maverick Meerkat' no problem with:
$ ssh -i MyEC2Key.pem [email protected]...
1
vote
1
answer
1k
views
How do I arrange for an ssh key with a passphrase to be loaded and available in ssh-agent to other processes on Windows startup?
I'm setting up automated deployment of applications in a Windows environment from continuous integration (TeamCity build-agents), and using cygwin + openssh to perform the remote-execution part of ...
1
vote
3
answers
659
views
Storing Public Certificate of Remote User for SSH Login
I've been trying to follow this tutorial: This Tutorial, but have come stuck at the point of logging in via public keys (without passsword prompt). I'm fairly new to unix comand line.
My scenario is,...
8
votes
3
answers
6k
views
Proper SSH keys location for a system user?
I have a system account with which I run a database (namely mongodb). By default it has no home. Now I'd like to trigger scp commands from that account, with ssh keys authentication to a remote server,...
4
votes
1
answer
12k
views
How do you create an ssh key for the apache user on Redhat?
As the question asks, how do I generate an ssh key for the user apache on Redhat?
My use case, is that we have a mercurial server running under the apache user. We also have several web servers ...
1
vote
1
answer
9k
views
SSH connection to localhost ssh_exchange_identification: Connection closed by remote host
Setting up SSH access on local machine for a project.
When I ssh -v localhost my connection gets refused. With the following stack-trace.
OpenSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
debug1: Reading ...
2
votes
4
answers
42k
views
SSH configuration, publickeys, Permission denied (publickey,password). error
My task: login from Mac OS Snow Leopard client to Ubuntu 10.10 server without password.
Commands:
client$ mkdir ~/.ssh
client$ chmod 700 ~/.ssh
client$ ssh-keygen -q -f ~/.ssh/id_rsa -t rsa
Enter ...
3
votes
1
answer
2k
views
how to automatically mount ~/Private using ecryptfs when logging in via ssh pubkey
Raionale: I want to be able to automatically make backups to a remote machine, which will be encrypted with ecryptfs.
The title says it all:
I set up ecryptfs-utils on my Debian Squeeze box, and set ...
4
votes
6
answers
3k
views
How Exactly Are SSH Keys Generated?
Saw a question on Twitter about moving the current SSH Keys to the same machine after a new installation.
This raised my curiosity and I asked myself how they are made. I understand the process on ...
5
votes
5
answers
13k
views
Pass your password to your SSH key via a script
I am writing a script that will allow me to retrieve a file from all of my servers at once. I have SSH keys in place in order to log into my servers. My SSH key however requires a password.
The ...
3
votes
4
answers
505
views
Managing a shared SSH key?
I have a single computer running OS X, XP, and ubuntu. Though, sometimes it's running multiples of those OS in VM or actual installs. I have a couple of servers I need to constantly SSH into - but ...
56
votes
11
answers
268k
views
Is there an equivalent to ssh-copy-id for Windows?
Is there any equivalent or port of ssh-copy-id available for Windows? That is, is there an easy way to transfer SSH keys from a local machine to a remote server under Windows?
In case it helps, I'm ...
1
vote
3
answers
372
views
gitosis public key
On my client I am attempting to run:
git clone gitosis@DevServer:gitosis-admin.git
I get a warning:
The authenticity of host '10.1.1.13
(10.1.1.13)' can't be established. RSA
key fingerprint ...
0
votes
1
answer
167
views
multi level ssh to pull and push git repo
I recently setup gitosis . Here is the scenario. I setup gitosis on Server S1 and multiple users have logins and all their id_rsa.pub have been setup so that their commits as a user get commited to ...
3
votes
2
answers
1k
views
When are root's SSH keys generated?
I have hosts with and without keys in /root/.ssh. I've noticed before some on screen feedback for SSH key generation on start up (first time.) But I am not sure what the catalyst is. I have looked ...
0
votes
4
answers
2k
views
ssh-keygen problem
I have configured the ssh-key using keygen for password less authenticaton as from the following link http://rcsg-gsir.imsb-dsgi.nrc-cnrc.gc.ca/documents/internet/node31.html
nO matter what i do this ...
5
votes
5
answers
4k
views
How can I flush my ssh keys on power management activity?
Using ssh-agent and private keys per the usual. Everything's working as normal.
My question regards best practices on flushing keys from ssh-add on activity like sleep, suspend, hibernate, etc. I ...
4
votes
3
answers
10k
views
Passwordless ssh into the same machine
OK, I know the basics of how to set up passwordless ssh: create a keypair using ssh-keygen then add the public key from id_dsa.pub into the host's .ssh/authorized_keys. So for two different machines ...
1
vote
4
answers
661
views
What's the benefit of using asymmetric keys over passwords?
Is there a benefit to using keys over regular passwords when it comes to logging into a remote server over SSH? (Besides not having to remember/input that password)
5
votes
5
answers
965
views
Sharing public key with ssh
Is it possible to somehow setup an ssh server that doesn't require a username,password or cert to login? If that's not possible, if I were to give all customers the same public key, would each ...
6
votes
9
answers
7k
views
ssh many users to one home
I want to allow some trusted users to scp files into my server (to an specific user), but I do not want to give these users a home, neither ssh login.
I'm having problems to understand the correct ...
19
votes
4
answers
93k
views
How to set public SSH key for root user on server?
I'm trying to follow Slicehost Document to setup my server.
I reached SSH section. I made it as written, but when i logged out from root, i cant access root@IP_ADDRESS -p 30000 again! but i can access ...
26
votes
8
answers
32k
views
A system for distributing SSH public keys
We have many different systems that are managed by several people. We have chosen to use SSH public key authentication to access those systems. This works great, as there is no need to manage or share ...
176
votes
5
answers
98k
views
What's the difference between authorized_keys and authorized_keys2?
Just wanted a quick summary of the differences between them and why there are two?
8
votes
3
answers
4k
views
Is it harmless to use the same ssh private/public keypair from multiple computers?
Whenever I get a new laptop, I copy the public and private ssh keys from the older one. But since I sometimes hold on to the old laptops, I'll be logging into servers and such using the same dsa ...
8
votes
1
answer
4k
views
Disable ssh password authentication by user
Is it possible to enable ssh password authentication for one user on a system and disable it for an other.
If you add
ChallengeResponseAuthentication no
PasswordAuthentication no
UsePAM no
to /etc/...