Product Knowledge Base

Space shortcuts

Page tree

Versions Compared

Old Version 5

changes.mady.by.user Alan Amos

Saved on

compared with

New Version 6

changes.mady.by.user Alan Amos

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Div. minor changes

...

SSH is a registered trademark of SSH Communications Security Corp in the United States and in certain other jurisdictions.

...

Authentication Methods

...

UserID and Password

This is the easiest and most popular method to authenticate a user. The user ID and a password is sent to the SSH server. Best of all, the password is encrypted before sending it to the server and decrypted at the server side. but, at the end, it is a password and if someone is able to decrypt he has opened the door to the server.

...

A passphrase is an additional protection of the key files, like a password. Every time you want to access a server by a passphrase protected key you have to enter the value of the passphrase as an additional authentication.

Note that the publickey authentication must be enabled in the SSH configuration file /etc/ssh/sshd_config SSH configuration file:

PasswordAuthentication yes

First of allIn addition, the private SSH-Key must be in OpenSSH-Format.

...

First we generate the key with ssh-keygen.

Code Block
kb@wilma:~/.ssh> ssh-keygen -f my-key-set.id_dsa -t rsa

When ssh-keygen asked askes for a passphrase you can enter your passphrase to add it to the key. Or you can leave it blank. Remember, the longer and stronger you make your password, the harder it will be for any malicious h4x0r (or government agency) to decrypt it. Save the key to /home/username/.ssh/identity as recommended by the ssh-keygen program. You will also need to specify which encryption method (e.g. RSA, DSA) you want to use.

ssh-keygen generates an private OpenSSH -Key key and a public key.

Code Block

...

Generating public/private rsa1 key pair.

...

    
Enter file in which to save the key (/home/dave/.ssh/identity): /home/dave/.ssh/identity

...

    Enter passphrase

...


Enter passphrase (empty for no passphrase): *enter your passphrase here*

...


Enter same passphrase again: *repeat your passphrase*

...

    Your identification has been saved in

...


Your identification has been saved in
    /home/dave/.ssh/identity.

...


Your public key has been saved in 
    /home/dave/.ssh/identity.pub.

...

    The key fingerprint is:

...


The key fingerprint is:
    24:bc:0b:fs:f5:06:1d:c0:05:3a:59:09:e3:07:8a:8d kb@wilma

 

 The private key looks the the key in the lines below:

...