RE: How to allow multiple hosts with same key??

From: Aaron Roberts <aaron(at)domicilium.com>
Date: Thu Dec 19 2002 - 11:28:19 EST

AFAIK, the user@host in the public key is the comment field from the public key; it isn't used by SSH.

With my sshd_config below, you can connect from any host, it is the user/key combination that is used for authentication.

Aaron

---

Port 22
ListenAddress 0.0.0.0

HostKey /etc/ssh/ssh_host_key
HostKey /etc/ssh/ssh_host_dsa_key
HostKey /etc/ssh/ssh_host_rsa_key

ServerKeyBits 768
LoginGraceTime 60
KeyRegenerationInterval 3600
PermitRootLogin no
IgnoreRhosts yes
IgnoreUserKnownHosts yes
StrictModes yes
X11Forwarding no
PrintMotd yes
KeepAlive yes
SyslogFacility AUTH
LogLevel INFO
RhostsAuthentication no
RhostsRSAAuthentication no
RSAAuthentication yes
PasswordAuthentication no
PermitEmptyPasswords no
AllowUsers aaron
PAMAuthenticationViaKbdInt no
Subsystem sftp /usr/libexec/openssh/sftp-server

---

-----Original Message-----

From: Biju Perumal [mailto:biperuma@npd.hcltech.com] Sent: 19 December 2002 11:48
To: secureshell@securityfocus.com
Subject: How to allow multiple hosts with same key??

Hi All,

     Is it possible for multiple clients to connect to a server with the same key.

     I will explain.
     I have a box which allow only ssh connection with a custom build

    kernel with ssh support. If I manage to put one public key along     with the image, can I connect from different clients using     a same private keay?

    How about changing the "user@host" in the public key to "*@*"?     Any problem with this approach?
    Any other idea how to implement this.

Thanks in advance

regards
--

Biju Perumal
HCL Technologies Ltd
184-188, N.S.K. Road,Vadapazhani
Chennai - 26, India
Voice: +91-44-3728366 (Extn: 1134)
http://san.hcltech.com Received on Fri Dec 20 11:49:59 2002