Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 13 Mar 2000 19:50:56 -0800
From:      rsowders@usgs.gov
To:        Sam Carleton <scarleton@miltonstreet.com>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: HELP!!! using RSA w/o passwords?
Message-ID:  <OFD0EC3BE7.31111DD3-ON882568A2.001504C8@wr.usgs.gov>

next in thread | raw e-mail | index | archive | help

Make sure your /usr/local/etc/sshd_config has " RSAAuthentication yes" and
your ssh_config have "RSAAuthentication yes"
Now run ssh-keygen but when it asks you for a pass phrase do not put
anything in just hit the enter key.
Transfer the identity.pub from each machine into the other machines
authorized_keys file.
Now passwords are not used at all and it relies on the identity.pub file
and the authorized_keys file and the pass-phrase (of which there is none)
everything else being satisfied it will let you in if you have the correct
keys (identity.pub).

Warning this is not very secure, in that if one machine/account is
compromised every machine that allows RSA login from the compromised
machine/account is also compromised.  If you are willing to tolerate this,
then the preceding explanation is for you.


                                                                                                           
                                                                                                           
                                                                                                           
                                                                                                           
                                                                                                           
                                                                                                           
                                                                                                           


                                                                                                                    
                    Sam Carleton                                                                                    
                    <scarleton@miltonstreet.c        To:     FreeBSD Questions <freebsd-questions@FreeBSD.ORG>      
                    om>                              cc:                                                            
                    Sent by:                         Subject:     HELP!!! using RSA w/o passwords?                  
                    owner-freebsd-questions@F                                                                       
                    reeBSD.ORG                                                                                      
                                                                                                                    
                                                                                                                    
                    03/13/00 04:40 PM                                                                               
                                                                                                                    
                                                                                                                    




I have both ssh and ssh2 installed on all my machines.  At present all
that is needed to authenticate is the users password.  I would like to
use RSA authentication without needed a password, but I cannot figure
out how to do it.

 I have NOT modified the /etc/ssh2/sshd2_config file.  What I have tried
is this:

 created a public/private key on both server/client for the user.
Copied the public key from the client into
 ~/.ssh2/authorized and ~/.ssh2/authorized_keys on the server.  When I
try to ssh into the server, I am still prompted for the password.  I do
NOT want to be prompted for the password!



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OFD0EC3BE7.31111DD3-ON882568A2.001504C8>