LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 03-27-2009, 11:34 PM   #1
bollweevil
LQ Newbie
 
Registered: Mar 2009
Posts: 3

Rep: Reputation: 0
Three SSH questions


1. Which computer can I generate the public-private key pair on, the server, the client, or either one?

2. What is the most kosher way to write the sshd_config file so that the SSH server will accept ANY connection with a valid username and password, without checking for installed public-private keys and whatnot?

3. If I generate the key pair on the server, how am I supposed to get id_dsa.pub (or id_rsa.pub) off of the server and onto the client/remote computer? The server is completely headless, no GUI, no CD burner, no USB ports, no email yet, no website served up yet, just a fixed IP address. I eventually overcame this problem because a friend had a server that I was able to SCP the id_dsa.pub file onto, but what if I didn't have access to a server already? Are there free servers for this out there? Is there a really easy way of emailing a file from the command line? I almost used imaplib in Python to place it on my IMAP server. I could have used Telnet to send the email manually, but I don't know how to do an attachment.

Thanks.
 
Old 03-28-2009, 12:15 AM   #2
anomie
Senior Member
 
Registered: Nov 2004
Location: Texas
Distribution: RHEL, Scientific Linux, Debian, Fedora
Posts: 3,935
Blog Entries: 5

Rep: Reputation: Disabled
Quote:
Originally Posted by bollweevil
1. Which computer can I generate the public-private key pair on, the server, the client, or either one?
Assuming both the server and client have ssh-keygen installed, you can use either. When it's all said and done, you will want the public and private keys on the client, and only the public key on the server.

Quote:
Originally Posted by bollweevil
2. What is the most kosher way to write the sshd_config file so that the SSH server will accept ANY connection with a valid username and password, without checking for installed public-private keys and whatnot?
To enable both password and pubkey authentication, specify:
Code:
PubkeyAuthentication yes
ChallengeResponseAuthentication yes
UsePAM yes
You can (and probably should) disable all other authentication forms.

Quote:
Originally Posted by bollweevil
3. If I generate the key pair on the server, how am I supposed to get id_dsa.pub (or id_rsa.pub) off of the server and onto the client/remote computer? The server is completely headless, no GUI, no CD burner, no USB ports, no email yet, no website served up yet, just a fixed IP address.
I don't follow. You are generating a key pair on a box (which will act as the client), and you need to get the public key to the remote computer (which will act as the server)?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Some SSH Questions Woodsman Slackware 4 08-22-2008 10:21 PM
2 questions about SSH yogaboy Linux - Security 15 12-20-2006 07:27 AM
SSH Questions Meabert Linux - Software 2 12-28-2005 02:24 AM
some SSH questions... nick1 SUSE / openSUSE 2 03-23-2005 06:24 AM
SSH Questions Tezdread Linux - Networking 7 02-05-2003 05:34 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 11:42 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration