Re: SSH again!

Wed, 14 Jun 2000 18:22:30 -0500 

On Wed, Jun 14, 2000 at 04:45:10PM -0500, Timothy C. Phan wrote:
> Hi all,
> 
>   Don't I suppose to get two prompts for two passwords?
>   One from the key and one from the login?
> 
>   Currently, I only need to enter the login password.
>   that is why I do not understand what are these keys
>   for?


If everything is working correctly, you should only be asked for your
passphrase (see 'man ssh-keygen').


However, from 'man ssh':

   If other authentication methods fail, ssh prompts the user for a passĀ­
     word.  The password is sent to the remote host for checking; however,
     since all communications are encrypted, the password cannot be seen by
     someone listening on the network.


Most of the systems on which I have set up a .ssh/authorized_keys file
require only the key.  One requires the password instead, although the
key file is correct as far as I can tell.

Bob

> 
> Nitebirdz wrote:
> > 
> > On Wed, 14 Jun 2000, Ethan Benson wrote:
> > 
> > > On Wed, Jun 14, 2000 at 09:26:55AM -0500, Timothy C. Phan wrote:
> > > > hi All,
> > > >
> > > >   I'm still confused about the keys file.
> > > >
> > > >   I ran the ssh-keygen on machine-1 with passphrase
> > > >   and it created two files in
> > > >     $HOME/.ssh/identify
> > > >     $HOME/.ssh/identify.pub
> > > >
> > > >   I copy the identify.pub to machine-2:$HOME/.ssh/m1.key
> > > >   on machine-2,  I ran the command on machine-2 to logon
> > > >   machin-1:
> > > >
> > > >      ssh -i $HOME/.ssh/m1.key machine-1
> > > >
> > >
> > > put the public key in $HOME/.ssh/authorized_keys in order to allow
> > > logins using the associated private key.
> > >
> > >
> > 
> > Yeah, basically you need to rename that identity.pub file to
> > authorized_keys on their other end as far as I remember.  By the way, I
> > don't really know what you're trying to do but if you did enter a
> > passphrase you will not then be able to ssh or scp to that host without
> > entering a password.  I was just thinking that perhaps you're trying to
> > set up the whole thing so that you are not prompted for a password at all,
> > so you can run scripts remotely.  So, if that is the case keep in mind
> > that you do NOT need a passphrase.
> > 
> > --
> > Nitebirdz
> > http://www.linuxnovice.org
> > Tips, articles, news, links...
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null

-- 
Bob Nielsen, N7XY  (RN2)                   [EMAIL PROTECTED]
Bainbridge Island, WA                      http://www.oz.net/~nielsen

Reply via email to