[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ssh setup
On 0, Ilya Konstantinov <future@galanet.net> wrote:
> On Wed, Jan 19, 2000 at 08:35:37AM -0500, Subba Rao wrote:
> > Are there any incompatiblities between ssh1 and ssh2, clients and servers? The NT clients
> > are putty and TTermPro.
>
> Yes. ssh1 and ssh2 are incompatible. SecureCRT and DataFellow's
> F-Secure both support SSH2 in their latest versions, but both are
> time-limited trials. The change in ssh2, as I know, is that packets
> are signed, making it impossible for a man-in-the-middle insertion
> of packets, but that was also fixed in ssh1 after CORE-SDI found
> it. So, just go and download OpenSSH. It's more secure, and both
> TeraTerm+SSH and Putty work great with it.
>
> > I have generated the keys on both Linux and NT. How are these keys to be used to
> > for encrypted tunnel?
>
> Upon installing ssh, a private/public key pair is generated.
> The private key is essential for encryption:
> for decrypting, what was encrypted with the public key
> (which is sent to the user each time he/she connects).
>
> Your private/public key pair is yours personally.
> You can append the public key to the .ssh/authorized_keys file
> in your home directory (on Un*x) and then you could use the
> matching private key to connect to your account without a password.
> Read man ssh(1) for more details on authorized_keys.
>
Thanks for replying. I have downloaded the OpenSSH and OpenSSL (prerequisite
for OpenSSH). The installation went fine.
I have several questions about the public/private keys. When I used the ssh-keygen,
the keys were generated. I am assuming you use one of these keys with the ssh client.
The clients I will use are on Win95/NT and OS/2.
Do I copy these keys and put them in the ssh clients directory?
When I tried to start sshd, I got the following message.
error: Could not load host key: /usr/local/etc/ssh_host_key: No such file or directory
I did not see any info about ssh_host_key in the ssh or sshd man pages. What
is this key and how do I fix it?
Subba Rao
subb3@attglobal.net
http://pws.prserv.net/truemax/
=> Time is relative. Here is a new way to look at time. <=
http://www.smcinnovations.com
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il