Date: Mon, 13 Mar 2000 19:50:56 -0800 From: rsowders@usgs.gov To: Sam Carleton <scarleton@miltonstreet.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: HELP!!! using RSA w/o passwords? Message-ID: <OFD0EC3BE7.31111DD3-ON882568A2.001504C8@wr.usgs.gov>
next in thread | raw e-mail | index | archive | help
Make sure your /usr/local/etc/sshd_config has " RSAAuthentication yes" and
your ssh_config have "RSAAuthentication yes"
Now run ssh-keygen but when it asks you for a pass phrase do not put
anything in just hit the enter key.
Transfer the identity.pub from each machine into the other machines
authorized_keys file.
Now passwords are not used at all and it relies on the identity.pub file
and the authorized_keys file and the pass-phrase (of which there is none)
everything else being satisfied it will let you in if you have the correct
keys (identity.pub).
Warning this is not very secure, in that if one machine/account is
compromised every machine that allows RSA login from the compromised
machine/account is also compromised. If you are willing to tolerate this,
then the preceding explanation is for you.
Sam Carleton
<scarleton@miltonstreet.c To: FreeBSD Questions <freebsd-questions@FreeBSD.ORG>
om> cc:
Sent by: Subject: HELP!!! using RSA w/o passwords?
owner-freebsd-questions@F
reeBSD.ORG
03/13/00 04:40 PM
I have both ssh and ssh2 installed on all my machines. At present all
that is needed to authenticate is the users password. I would like to
use RSA authentication without needed a password, but I cannot figure
out how to do it.
I have NOT modified the /etc/ssh2/sshd2_config file. What I have tried
is this:
created a public/private key on both server/client for the user.
Copied the public key from the client into
~/.ssh2/authorized and ~/.ssh2/authorized_keys on the server. When I
try to ssh into the server, I am still prompted for the password. I do
NOT want to be prompted for the password!
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OFD0EC3BE7.31111DD3-ON882568A2.001504C8>