TIA
Call me stupid, but I still cannot make head nor tail of it all. Heres my
thinking:
I want SSH to check that the host is on the allowed list
I want SSH to check that it has a valid key for that host
I want SSH to check that the user/key match
As such, would I perform the following:-
Create a /etc/ssh/ssh_known_hosts2 with the users hostname and RSA or DSA
public key
is that all that is required?
Did you try googling for ssh howto?
> Call me stupid, but I still cannot make head nor tail of it all. Heres my
> thinking:
>
> I want SSH to check that the host is on the allowed list
> I want SSH to check that it has a valid key for that host
> I want SSH to check that the user/key match
>
> As such, would I perform the following:-
>
> Create a /etc/ssh/ssh_known_hosts2 with the users hostname and RSA or DSA
> public key
>
> is that all that is required?
For 1 & 2, you generate host key on the client and add it
(public part) to known_hosts on the server. For 3, user
generates a key for themselves on the client and adds it
to ~/.ssh/authorized_keys[2] on the server. Plus, there
are a few options to sshd you my need to set, dep. on your
configuraton.
Dima
--
Backwards compatibility is either a pun or an oxymoron. -- PGN
Dimitri - thanks for that - yes I did. A minefield of ambiguous
information. tried the groups search too. I guess I'll have to delve
through the thousands of docs I've found.
Heh, yes there's that. If you really want to learn, buy the snail
book (http://www.snailbook.com).
Dima
--
Tlaloc: What was Elrond's second name?
Gruber: Hubbard -- <ahbou=3C69EB63...@last.com>
[Some stuff that Mozilla 0.9.9 thought was a uuencoded attachment]
Looks like I need to go file a report with Bugzilla... Grr...
--
Chronos Tachyon
http://chronos.dyndns.org/ -- WWED?
Guardian of Eristic Paraphernalia
Gatekeeper of the Region of Thud
6:17pm up 3 days, 19:25, 1 user, load average: 0.20, 0.17, 0.14