Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
1. Which computer can I generate the public-private key pair on, the server, the client, or either one?
2. What is the most kosher way to write the sshd_config file so that the SSH server will accept ANY connection with a valid username and password, without checking for installed public-private keys and whatnot?
3. If I generate the key pair on the server, how am I supposed to get id_dsa.pub (or id_rsa.pub) off of the server and onto the client/remote computer? The server is completely headless, no GUI, no CD burner, no USB ports, no email yet, no website served up yet, just a fixed IP address. I eventually overcame this problem because a friend had a server that I was able to SCP the id_dsa.pub file onto, but what if I didn't have access to a server already? Are there free servers for this out there? Is there a really easy way of emailing a file from the command line? I almost used imaplib in Python to place it on my IMAP server. I could have used Telnet to send the email manually, but I don't know how to do an attachment.
1. Which computer can I generate the public-private key pair on, the server, the client, or either one?
Assuming both the server and client have ssh-keygen installed, you can use either. When it's all said and done, you will want the public and private keys on the client, and only the public key on the server.
Quote:
Originally Posted by bollweevil
2. What is the most kosher way to write the sshd_config file so that the SSH server will accept ANY connection with a valid username and password, without checking for installed public-private keys and whatnot?
To enable both password and pubkey authentication, specify:
You can (and probably should) disable all other authentication forms.
Quote:
Originally Posted by bollweevil
3. If I generate the key pair on the server, how am I supposed to get id_dsa.pub (or id_rsa.pub) off of the server and onto the client/remote computer? The server is completely headless, no GUI, no CD burner, no USB ports, no email yet, no website served up yet, just a fixed IP address.
I don't follow. You are generating a key pair on a box (which will act as the client), and you need to get the public key to the remote computer (which will act as the server)?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.