Pantek Library
Hosting Provided By
CybrHost
High Speed Hosting
Mailing Lists: lists.debian.org > debian-user > 07 > 060123.html (Request Expert lists.debian.org Support)

Re: Debian default ssh configuration problem with public/private key checking

From: Andrew Sackville-West <andrew(at)farwestbilliards.com>
Date: Fri Jun 22 2007 - 16:50:17 EDT


On Fri, Jun 22, 2007 at 07:14:15PM +0000, - Tong - wrote:
> Hi,
>
> I'm trying to setup Debian to accept my remote ssh
> login. No problem with that, but I'm facing a
> configuration problem:
>
> It doesn't seem to be able to handle/accept the public/private key
> checking, i.e.,what sourceforge.net is doing [1], but insists on checking
> login password [2], which is not a recommended practice.
>
> This is a vanilla sshd configuration. I.e., everything from Debian default.
> What changes should I make to enable the public/private key Authentication?

from /etc/ssh/sshd_config:

RSAAuthentication yes
PubkeyAuthentication yes

[....]

# To enable empty passwords, change to yes (NOT RECOMMENDED) PermitEmptyPasswords no

# Change to no to disable s/key passwords ChallengeResponseAuthentication no

# Change to yes to enable tunnelled clear text passwords PasswordAuthentication no

and before you do that (i.e., while passwords is still on) do

Do you need help?X

ssh-copy-id -i ~/.ssh/id_rsa.pub you@your-box

it will prompt you for the password, copy up the key and tweak a couple permissions if needed. Then you can test it using public-key before you turn off the passwords...

A 

-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Received on Fri Jun 22 16:50:35 2007

This archive was generated by hypermail 2.1.8 : Fri Jun 22 2007 - 17:00:02 EDT

Contact Us  Legal Notices  Order Services Online 
Pantek Home  Privacy Policy  IT news  Site Map  Pantek Library