Questions tagged [ssh-keys]

an authorization mechanism for SSH involving public-key cryptography.

SSH keys are an authorization mechanism for SSH involving public-key cryptography. It consists of

  • A private/public key pair generated by a utility like ssh-keygen.
  • A configured (in /etc/ssh/sshd_config) SSH daemon that allows public key authentication.
  • A configured user account that has the public key copied to ~/.ssh/authorized_keys.
792 questions
3
votes
4 answers

Key-Based SSH Permission denied (publickey) Ubuntu 12-04

I have configured sshd to accept key-based ssh logins with LogLevel on DEBUG, and uploaded my public key to ~/.ssh.authorized_keys, where permissions are set as: 700 ~/.ssh 600 ~/.ssh/authorized_keys From root, I can su - USERNAME. From the client…
3
votes
1 answer

Forcing command on ssh's authorized_keys merges STDOUT and STDERR

I've been working to have a script in a centralized server to do some things and output a .tar.gz file (see redirect temporarily STDOUT to another file descriptor, but still to screen). I also have exchanged ssh keys, so now from a client machine I…
Carlos Campderrós
  • 773
  • 2
  • 6
  • 17
3
votes
2 answers

SSH: Configure ssh_config to use specific key file for a specific server fingerprint

I have a key based login for a server. The IP and DNS of the server can change, because it is hosted on Amazon. Is there a way to configure the ssh client config to use the specific key file for this server only, when the fingerprint of the server…
Martin
  • 153
  • 6
3
votes
3 answers

System-wide authorized_keys

SSH auth by RSA-key: ~/.ssh/authorized_keys. Okay. Is there a way to set a system-wide authorized key so I can login to any account, including the newly created ones? The reason: i've got a server and am the only admin. User accounts are used to…
kolypto
  • 11,058
  • 12
  • 54
  • 66
3
votes
2 answers

Connect SSH Bastion Server to DB Server

I want to connect to a Linux Database Server on a private subnet through a Linux SSH Bastion Server situated on a public subnet. I also want to create a tunnel to port 3306. When I attempt to create the SSH connection from the Bastion server, I…
JMC
  • 506
  • 6
  • 23
3
votes
4 answers

Copy directory using ssh tunnel

The following command is working as expected. ssh soak@10.10.10.11 "ssh soak@10.199.199.191 'cat test.txt'" > /home/shantanu/test.txt What I need to do is to copy the entire directory instead of a single file. Is it possible to use rync with SSH…
shantanuo
  • 3,579
  • 8
  • 49
  • 66
3
votes
1 answer

Can you make default client key length larger for ssh-keygen?

When users employ ssh-keygen to create RSA key pairs, the default key length is 2048 bits. You can override that on the command line with the -b argument, but few users will bother. As mentioned in this article, it is recommended to use key lengths…
user67327
  • 197
  • 2
  • 8
3
votes
2 answers

Does Mac OS X Cache Private Keys for SSH?

I have SSH key-based authentication setup to connect to a remote server from my Macbook Air. The private key was originally stored in ~/.ssh/id_rsa, but I have since moved that file to a secure external HD. I deleted the file from the ~/.ssh…
Trent Scott
  • 959
  • 1
  • 12
  • 28
3
votes
3 answers

Passwordless SSH not working

I have set up passwordless ssh authentication (via authorized_keys) numerous times successfully and with ease, usually on servers that did not have any custom ssh-related configuration changes prior to that. Now I need to set it up on a CentOS…
SaltyNuts
  • 275
  • 1
  • 6
  • 12
3
votes
1 answer

how to automatically mount ~/Private using ecryptfs when logging in via ssh pubkey

Raionale: I want to be able to automatically make backups to a remote machine, which will be encrypted with ecryptfs. The title says it all: I set up ecryptfs-utils on my Debian Squeeze box, and set up one user to use it via ecryptfs-setup-private.…
andreas-h
  • 1,114
  • 1
  • 17
  • 28
3
votes
4 answers

Managing a shared SSH key?

I have a single computer running OS X, XP, and ubuntu. Though, sometimes it's running multiples of those OS in VM or actual installs. I have a couple of servers I need to constantly SSH into - but sometimes I change hosts or wipe the servers. At any…
Xeoncross
  • 4,449
  • 12
  • 43
  • 56
3
votes
2 answers

When are root's SSH keys generated?

I have hosts with and without keys in /root/.ssh. I've noticed before some on screen feedback for SSH key generation on start up (first time.) But I am not sure what the catalyst is. I have looked in /root/anaconda-ks.cfg and don't see anything…
Aaron Copley
  • 12,525
  • 5
  • 47
  • 68
3
votes
0 answers

What is the meaning of this line from ssh output: 'Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling'?

Everything works, ssh connects using private-public ssh key pair. Just few things in ssh -v Ora2 output isn't clear for me. This is complete ssh -v Ora2 output: PS C:\Users\roeslermichal> ssh -v Ora2 OpenSSH_for_Windows_8.6p1, LibreSSL 3.4.3 debug1:…
michal roesler
  • 145
  • 1
  • 6
3
votes
2 answers

Why the RHEL8 system do not generate SSH host keys automatically when missing?

On the RHEL 8 and previous it is usual, that the SSH host keys in /etc/ssh are generated automatically by sshd service when missing. Usually there should…
Jaroslav Kucera
  • 1,545
  • 11
  • 18
3
votes
1 answer

How to ssh-copy-id through a jump-host? Something similar to the -J option with ssh command

I use a jump host to connect to the remote servers through SSH. I use the following linear command for the connection. ssh -J jumpuser@jumphost:2455 remoteuser@remotehost It works fine. But for new servers I need to setup passwordless SSH, So I…