[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ssh setup



On  0, Ilya Konstantinov <future@galanet.net> wrote:
> On Wed, Jan 19, 2000 at 08:35:37AM -0500, Subba Rao wrote:
> > Are there any incompatiblities between ssh1 and ssh2, clients and servers? The NT clients
> > are putty and TTermPro.
> 
> Yes. ssh1 and ssh2 are incompatible. SecureCRT and DataFellow's
> F-Secure both support SSH2 in their latest versions, but both are
> time-limited trials. The change in ssh2, as I know, is that packets
> are signed, making it impossible for a man-in-the-middle insertion
> of packets, but that was also fixed in ssh1 after CORE-SDI found
> it. So, just go and download OpenSSH. It's more secure, and both
> TeraTerm+SSH and Putty work great with it.
> 
> > I have generated the keys on both Linux and NT. How are these keys to be used to
> > for encrypted tunnel?
> 
> Upon installing ssh, a private/public key pair is generated.
> The private key is essential for encryption:
> for decrypting, what was encrypted with the public key
> (which is sent to the user each time he/she connects).
> 
> Your private/public key pair is yours personally.
> You can append the public key to the .ssh/authorized_keys file
> in your home directory (on Un*x) and then you could use the
> matching private key to connect to your account without a password.
> Read man ssh(1) for more details on authorized_keys.
> 

Thanks for replying. I have downloaded the OpenSSH and OpenSSL (prerequisite
for OpenSSH). The installation went fine.

I have several questions about the public/private keys. When I used the ssh-keygen,
the keys were generated. I am assuming you use one of these keys with the ssh client.
The clients I will use are on Win95/NT and OS/2.

Do I copy these keys and put them in the ssh clients directory?

When I tried to start sshd, I got the following message.

error: Could not load host key: /usr/local/etc/ssh_host_key: No such file or directory

I did not see any info about ssh_host_key in the ssh or sshd man pages. What
is this key and how do I fix it?


Subba Rao
subb3@attglobal.net
http://pws.prserv.net/truemax/

 => Time is relative. Here is a new way to look at time. <=
http://www.smcinnovations.com

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il