[PLUG] 2-way exchanges with ssh and scp
Russell Senior
seniorr at aracnet.com
Sat Dec 6 18:22:02 UTC 2003
>>>>> "Rich" == Rich Shepard <rshepard at appl-ecosys.com> writes:
Russell> Does the remote system have "PasswordAuthentication yes" in
Russell> its /etc/ssh/sshd_config?
Rich> Yes, it does.
Rich> I just tried connecting with that commented out with no
Rich> difference.
Well, it should have been "yes" given my understanding of what you
were trying to do. However, I think now that understanding was
faulty.
You probably should make new keys on lemna, rather than copying them
over from salmo. On lemna, run:
ssh-keygen -t dsa
If dsa keys are what you want. You should _add_ (as in "append") the
resulting .ssh/id_dsa.pub to the appropriate users
.ssh/authorized_keys on salmo. Likewise, you should _add_ salmo's
.ssh/id_dsa.pub to lemna's .ssh/authorized_keys.
Permissions and ownership are also important. The .ssh directory
should be 0700, and .ssh/id_dsa should be 0600. I seem to recall
something about write permission on the home directory being important
too, but I couldn't find the specifics. Something about a group
member or another user should not being able to modify the .ssh
permissions.
--
Russell Senior ``I have nine fingers; you have ten.''
seniorr at aracnet.com
More information about the PLUG
mailing list