From owner-freebsd-questions Mon Feb 3 12:31:55 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B4FBB37B401 for ; Mon, 3 Feb 2003 12:31:53 -0800 (PST) Received: from pa-plum1b-166.pit.adelphia.net (pa-plum1b-166.pit.adelphia.net [24.53.161.166]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9EF7B43F85 for ; Mon, 3 Feb 2003 12:31:52 -0800 (PST) (envelope-from wmoran@potentialtech.com) Received: from potentialtech.com ([172.16.0.95]) by pa-plum1b-166.pit.adelphia.net (8.12.3/8.12.3) with ESMTP id h13KXIT5071983; Mon, 3 Feb 2003 15:33:18 -0500 (EST) (envelope-from wmoran@potentialtech.com) Message-ID: <3E3ED164.4050209@potentialtech.com> Date: Mon, 03 Feb 2003 15:30:28 -0500 From: Bill Moran User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.1) Gecko/20021127 X-Accept-Language: en-us, en MIME-Version: 1.0 To: carvin5string@netscape.net Cc: questions@freebsd.org Subject: Re: openssh - i'm confused References: <652F9B2D.5BF2EA13.0E12D777@netscape.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG carvin5string@netscape.net wrote: > Bill Moran wrote: > >>Chip Wiegand wrote: >> >>>I am setting up a web server to be co-located at my isp's office. I am setting up openssh >>>for my connectivity to it. I have run ssh-keygen on it and now have the files identity, >>>identity.pub and authorized_keys in the .ssh directory in my home directory. I have copied >>>the file identity.pub to my w2k box and renamed it to identity.ppk (because that's what the >>>WinSCP program wants). Is this okay to do? Can I now disable telnet and any other inetd >>>services that may be running? Any other suggestions? >> >>Have you ever used ssh before? >>I've used the system installed ssh/sshd for years and there's very little that needs set up >>to make it work. >>You're definately more secure using keygen to make public/private keys, but that's not even >>necessary. I've used it without generating keys with no problems. >>Make sure /etc/rc.conf has sshd_enable="YES" so the daemon starts, and hook it to your local >>network and test. It's really not much harder to use than telnet, just much more secure. > > Thanks Bill, > I have the connection working, rc.conf is set up correctly, inetd has everything commented > out, so the box should be reasonably secure. Now to figure out why I can't copy/delete files > on it from within the WinSCP program. No matter how I set the permissions on the > /usr/local/www/data directory and/or files in it, I can't do anything with them. So it's off > to the WinSCP lists I guess. You may want to try logging into itself (via ssh) from the FreeBSD box and scping files that way, it should narrow down whether it's an sshd or WinSCP problem. Good luck. -- Bill Moran Potential Technologies http://www.potentialtech.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message