Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
1) login as USER on the client (where you want to connect from)
2) ssh-keygen -t dsa
(don't suppy a passphrase now - you can do that later once the first bit works)
3) scp /home/USER/.ssh/id_dsa.pub REMOTEHOST:/home/USER/.ssh/authorized_keys2
4) ssh REMOTEHOST
That's about it - if you want to put multiple keys on the host you will need to copy the file over then use cat to append it to authorized_keys2. Other than that just make sure you have sshd running on the host.
I have been able to generate my keys and put them into the appropriate directories on the local and remote machines.
However, when I SSH from box 1 to server 1, I was expecting to be prompted for the passphrase, but I am not.
I seem to be missing, as I was under the impression that once I started generating keys and SSH'ing to the machines that were setup with the keys, I would be asked for a passphrase.
So far, I just enter my useraccount password on the machine I am SSH'ing to.
If you set up a passphrase you need to run ssh-agent on your local machine when you first login locally - the passphrase is then saved for that session and used whenever you try to make an ssh connection. The whole idea of ssh is that no use identifiable passwords etc are sent over the network. Therefore passphrases are supposed to be just that "phrases". For example "The red cat SPAT on his SUNS brick yellow mat." In other words a long phrase that nobody should be able to guess.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.