Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssh-keys]

an authorization mechanism for SSH involving public-key cryptography.

SSH keys are an authorization mechanism for SSH involving public-key cryptography. It consists of

  • A private/public key pair generated by a utility like ssh-keygen.
  • A configured (in /etc/ssh/sshd_config) SSH daemon that allows public key authentication.
  • A configured user account that has the public key copied to ~/.ssh/authorized_keys.
792 questions
2
votes
1 answer

Verify authenticity of SSH host on Digital Ocean droplet (FreeBSD)

When first connecting via SSH with keys to a newly minted Digital Ocean droplet VM running FreeBSD (per this tutorial), we get a message about “The authenticity of host blah-blah can’t be established”. I understand this means my computer has no…
Basil Bourque
  • 851
  • 1
  • 11
  • 22
2
votes
2 answers

Securely sharing SSH access in a team with SSH bastion

I need to share SSH access to a number of servers with my teammates and looking for a secure way to do it. I came up with a configuration involving a SSH bastion server, but not sure how (and if) it could be done. I want to have only one SSH key…
ivangretsky
  • 141
  • 2
2
votes
1 answer

SSH into remote host using jump box

I have a current setup for my servers like below: My computer ---> Jump box -----> Target server in private network I connect to the jump box from my computer using command ssh -A jumpbox and from jump box to target server using ssh target…
Venkata S S Krishna Manikeswar
  • 45
  • 2
  • 7
2
votes
1 answer

Recovering or regenerating lost AWS EC2 Key Pairs

AWS rookie here. I created a few EC2 instances under my AWS account and reused the same Key Pair for all of them. I believe (IIRC) that I had generated the Key Pair from inside AWS, but that could be wrong. Over this past weekend I sold my old…
hotmeatballsoup
  • 143
  • 7
2
votes
1 answer

Remote encrypted mount

I tried this sshfs without shell access, but I realized I should ask opposite way I would love to mount remote file system automatically, over encrypted tunnel preferably using private/public keys. It should not mean any security risk (no ssh login…
Pavel Niedoba
  • 233
  • 1
  • 3
  • 10
2
votes
1 answer

problems with ssh connection: sometimes succesfull/sometimes timeout/sometimes hangs

I have a problem with ssh connection. I am using my Ubuntu 16.04 client to connect to the Centos7 server. I use ssh-key pairs to establish connections. But then a lot of weird things happen: Sometimes I can connect to the server without problems,…
K.I.
  • 123
  • 1
  • 5
2
votes
1 answer

Previously working ssh results in "permission denied" after running rsync of a directory (which did not contain .ssh) to home folder of remote machine

I used the below rsync command to contents of a directory into the home folder of the remove machine: rsync -az directory/ user@IPADDRESS:~/ The files were moved over with no problem for all 4 machines. After moving the files I get the following…
Greg
  • 1,657
  • 5
  • 27
  • 38
2
votes
2 answers

ssh-keyscan does not reveal DSA ssh-dss key

I am using ssh-keyscan to obtain public keys for a couple of SSH servers. One of my appliances only supports DSA / ssh-dss. ssh-keyscan with the "-t dsa" option is not able to get the public key while the Nmap script ssh-hostkey in fact is able to…
Johannes Weber
  • 21
  • 1
  • 2
2
votes
2 answers

try to lock password but have no entry in /etc/shadow

Goal: Maintaining a former colleagues system, I want to lock all password logins in order to only allow ssh key based logins. Infos: The CentOS 6.5 system does not offer any network based authentication features (no Kerberos, ldap, gssapi etc.,…
MarkHelms
  • 181
  • 5
  • 16
2
votes
1 answer

Download public & private keys from Google Cloud Instance

New to the cloud so pardon this question as I'm certain it's relatively simple! I've setup my Google Cloud Instance and I'm now trying to connect to it using FileZilla. I have a good understanding of how to do this... but I've been completely unable…
alexforyou
  • 91
  • 1
  • 2
  • 9
2
votes
2 answers

How can I check lifetime of SSH keys loaded to agent?

I'm using OpenSSH on Linux. For securioty reasons, when I load keys to agent, I use -t option, to limit time of availability of the keys (generally for 10 hours or so). Is there any way to list all loaded keys with their "expiry" time?
Huash7ee
  • 45
  • 1
  • 4
2
votes
0 answers

requirement "uid >= 1000" not met by user "root" in CentOS

I have a server with CentOS. Am trying to configure and connect to the server using a Public SSH-Key, I configured all: user, user folder, .ssh, etc. Now, trying to connect I get this error in the client machine: Permission denied…
Sredny M Casanova
  • 129
  • 1
  • 1
  • 3
2
votes
2 answers

Restrict SSH key to only execute rsync

I am working on a backup strategy for my servers with rsync. I followed this tutorial and to restrict the use of the SSH key, I make of this validate-rsync.sh script that I can also run without problems: #!/bin/sh case "$SSH_ORIGINAL_COMMAND" in…
Johannes Filter
  • 149
  • 1
  • 8
2
votes
1 answer

difference between https git clone and ssh git clone

Hi I am using git for a while now however I am new to enterprise git. here Is what I did with my test-repo I created a ssh key pair and added public key to my test repo as deploy key. Now I can clone my test-repo from ssh and https however when I…
Shailesh Sutar
  • 1,517
  • 5
  • 23
  • 41
2
votes
1 answer

Can Microsoft Team Foundation Server (TFS) be configured to use sshPublicKey ldap attributes

We have a very mixed environment as many enterprises should, our users are in Microsoft AD, our servers are a mix of windows and linux. As such, we use the sshPublicKey ldap attribute to store ssh keys for linux authentication and gitlab. Does TFS…
Jacob Evans
  • 7,886
  • 3
  • 29
  • 57
1 2 3
52 53