Date: Mon, 13 Mar 2000 19:50:56 -0800 From: rsowders@usgs.gov To: Sam Carleton <scarleton@miltonstreet.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: HELP!!! using RSA w/o passwords? Message-ID: <OFD0EC3BE7.31111DD3-ON882568A2.001504C8@wr.usgs.gov>
next in thread | raw e-mail | index | archive | help
Make sure your /usr/local/etc/sshd_config has " RSAAuthentication yes" and your ssh_config have "RSAAuthentication yes" Now run ssh-keygen but when it asks you for a pass phrase do not put anything in just hit the enter key. Transfer the identity.pub from each machine into the other machines authorized_keys file. Now passwords are not used at all and it relies on the identity.pub file and the authorized_keys file and the pass-phrase (of which there is none) everything else being satisfied it will let you in if you have the correct keys (identity.pub). Warning this is not very secure, in that if one machine/account is compromised every machine that allows RSA login from the compromised machine/account is also compromised. If you are willing to tolerate this, then the preceding explanation is for you. Sam Carleton <scarleton@miltonstreet.c To: FreeBSD Questions <freebsd-questions@FreeBSD.ORG> om> cc: Sent by: Subject: HELP!!! using RSA w/o passwords? owner-freebsd-questions@F reeBSD.ORG 03/13/00 04:40 PM I have both ssh and ssh2 installed on all my machines. At present all that is needed to authenticate is the users password. I would like to use RSA authentication without needed a password, but I cannot figure out how to do it. I have NOT modified the /etc/ssh2/sshd2_config file. What I have tried is this: created a public/private key on both server/client for the user. Copied the public key from the client into ~/.ssh2/authorized and ~/.ssh2/authorized_keys on the server. When I try to ssh into the server, I am still prompted for the password. I do NOT want to be prompted for the password! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OFD0EC3BE7.31111DD3-ON882568A2.001504C8>