[lug] OpenSSH
Michael J. Pedersen
marvin at keepthetouch.org
Tue Jan 30 13:04:11 MST 2001
On Tue, Jan 30, 2001 at 12:58:46PM -0700, D. Stimits wrote:
> I've seen several posts recently on setting up ssh, and used some of the
> advice in those, but am still having problems setting things up
> correctly (basically I'm working on getting one internal machine to
> allow login on a per user key basis without passwords...blanket machine
> setups are unacceptable). The "-v" option gives me some clues that are
> useful, but not sufficient. So I'm looking for online docs and other
> pages that might help in diagnosing or setting up ssh, but for the last
> couple of days have been unable to reach www.openssh.org's web site.
> Does anyone know of a good url concerning ssh setup?
Nope, dunno of a good url. However, here's the steps to take to make it happen
(as I use it every day, I'm fairly certain this works :)
1) As the user who will login, issue 'ssh-keygen'
Follow all prompts, but make certain not to use a passphrase on this secret
key.
2) Copy the file $HOME/.ssh/identity.pub to $HOME/.ssh/authorized_keys on the
server to which you will log in.
3) On the server you log into, find the file 'sshd_config', and make the
following changes to it:
-----
PasswordAuthentication no
PermitEmptyPasswords yes
-----
4) Restart sshd
5) chown -R user:group $HOME/.ssh
6) chmod 0700 $HOME/.ssh ; chmod 0600 $HOME/.ssh/*
You should now be able to login successfully.
--
Michael J. Pedersen
My GnuPG KeyID: 4E724A60 My Public Key Available At: wwwkeys.pgp.net
My GnuPG Key Fingerprint: C31C 7E90 5992 9E5E 9A02 233D D8DD 985E 4E72 4A60
GnuPG available at http://www.gnupg.org
More information about the LUG
mailing list