Menu
▾
▴
[Trinux-talk] Follow-up: SSH....
|
From: Sylar, J. <JS...@er...> - 2001-03-02 17:21:12
|
OK, I got SSH to work with Trinux. Some important safety tips: 1. Check the key files generated by ssh-keygen. I'm using a Windows port of the OpenSSH client from NetworkSimplicity.com. When the keyfiles are generated, ssh-keygen adds a Microsoft carriage return character to the end of identity.pub. I believe the extra character was causing the server to reject the keys during RSA authentication. I don't know this for a fact; but using VI to remove the extra character seemed to solve my key-reject problems. I don't know if this is the case for other SSH clients ported to Windows, but it might be a good idea to check if you're using one and having problems.... 2. Don't use only half a brain cell to read the sshd man page (like I did). I found I must specify "RSAAuthentication yes" and "PermitRootLogin without-password" in my sshd_config to start a session. I'm using the most recent SSHD from Matthew's site (v2.1.1, I think). Again, I don't know if having to specify the server startup options is client-specific, but my client session won't start without them. Also, when starting your client session, specify "-l root" on the command line.... 3. Take advantage of the passphrases option when generating keys. Since you'll be logging in as root without a password, its a real good idea to generate passphrases with your key files.... Comments/critique are welcomed :-) Sam |
