Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Multiple private key to be uploaded
Operating Systems Solaris Multiple private key to be uploaded Post 302455574 by lhareigh890 on Wednesday 22nd of September 2010 02:02:38 AM
Old 09-22-2010
yes it's under .ssh folder .i forgot that the owner of authorized_keys is root..sorry..thank you

another question bt Smilie
a. do I need to do this for all servers? or maybe a script right? if yes, I can just do it on any server right?

b. i wanted users to login using private key. if they login w/o key, system will not allow it.

thanks
 

10 More Discussions You Might Find Interesting

1. Programming

Passphrase protection of private key

Hi all, I have written a Java program to generate RSA public and private keys. I am writing the keys to a file and reading from it when required to encryption or decryption. I want to protect the private key file using a passphrase. Can anyone tell me how to do it? :( Thanks. (2 Replies)
Discussion started by: Treasa
2 Replies

2. Shell Programming and Scripting

Rename .pub and private key

I wish to generate a id_dsa.pub and id_dsa (Public and Private Key) in a common user group. I have checked the .ssh directory and i have already found id_dsa.pub and id_dsa existing. Is that OK if i create both the keys in my home direcotry, rename it to jjj.pub and jjj and move to Common user... (1 Reply)
Discussion started by: vasuarjula
1 Replies

3. UNIX for Dummies Questions & Answers

Extracting a Private key from a keystore?

Hi everyone! I know you can extract public keys from a keystore using the keytool command. But what is the process to extract a private key from a jks keystore and import into another jks keystore using keytool? Any guidance would be greatly appreciated! I can't seem to find anything, I do... (0 Replies)
Discussion started by: Keepcase
0 Replies

4. UNIX for Dummies Questions & Answers

Secure private key

Hello all, We have unix environment and we would like to use ssh public and private key to move between server using ssh. I do know how to test this and have it up and running on some sandbox...but my question is how would one secure the PRIVATE KEY....we are not using a passphrase...and i know... (1 Reply)
Discussion started by: abdul.irfan2
1 Replies

5. Red Hat

ssh private key passwordless authentication

Hello, Need a suggestion to setup private key passwordless authentication. I am not sure this can done or not :wall: here is the sincerio I have two servers, sever1 with a user "user1" and servera with usera here dataflow: usera from servera, will pull/push files to server1 on user1... (2 Replies)
Discussion started by: bobby320
2 Replies

6. Shell Programming and Scripting

Private Key

I have two types of files pubring.pkr secring.skr secring.skr is encrypted and not able to read. How can i read secring.skr in text format after decrypting ? is there any way of decrypting this file? Unix HP - UX Version. (4 Replies)
Discussion started by: airesh
4 Replies

7. UNIX for Dummies Questions & Answers

Public and Private Key generation for scp

Hi, What tool is used to generate public and private keys for SCP? Do you have an example script that generates these keys, puts them in files and then another example script that references them from SCP? Thanks, (9 Replies)
Discussion started by: Astrocloud
9 Replies

8. OS X (Apple)

Using a private key with SSH in terminal

Before you get the wrong idea, I am not looking for how to generate one. I have a key from a server admin but I can't figure out how to use it in OS X. I have the key, the address and everything I should need but there doesn't seem to be a step by step on how to install the key and use it in... (4 Replies)
Discussion started by: kylebellamy
4 Replies

9. Shell Programming and Scripting

Rsa public private key matching

Hi All, I have a requirement where i need to check if an rsa public key corresponds to a private key and hence return success or failure. Currently i am using the command diff <( ssh-keygen -y -e -f "$PRIVKEY" ) <( ssh-keygen -y -e -f "$PUBLICKEY" ) and its solving my purpose. This is in... (1 Reply)
Discussion started by: mritusmoi
1 Replies

10. UNIX for Advanced & Expert Users

Private and public key encryption

Hi, we have private and public key, encrypt file using public and want to decrypt using private key. can you please advise below commands are correct or other remedy if unix have? encrypt -a arcfour -k publickey.asc -i TESTFILE.csv -o TESTFILE00.csv decrypt -a arcfour -k privatekey.asc... (2 Replies)
Discussion started by: rizwan.shaukat
2 Replies

LEARN ABOUT DEBIAN

dropbear

dropbear(8)						      System Manager's Manual						       dropbear(8)

NAME

       dropbear - lightweight SSH2 server

SYNOPSIS

       dropbear [-FEmwsgjki] [-b banner] [-d dsskey] [-r rsakey] [-p [address:]port]

DESCRIPTION

       dropbear  is  a	SSH  2 server designed to be small enough to be used in small memory environments, while still being functional and secure
       enough for general use.

OPTIONS

       -b banner
	      bannerfile.  Display the contents of the file banner before user login (default: none).

       -d dsskey
	      dsskeyfile.  Use the contents of the file dsskey for the DSS host key  (default:	/etc/dropbear/dropbear_dss_host_key).	Note  that
	      some  SSH  implementations  use  the  term "DSA" rather than "DSS", they mean the same thing.  This file is generated with dropbear-
	      key(8).

       -r rsakey
	      rsakeyfile.  Use the contents of the file rsakey for the rsa host key (default: /etc/dropbear/dropbear_rsa_host_key).  This file	is
	      generated with dropbearkey(8).

       -F     Don't fork into background.

       -E     Log to standard error rather than syslog.

       -m     Don't display the message of the day on login.

       -w     Disallow root logins.

       -s     Disable password logins.

       -g     Disable password logins for root.

       -j     Disable local port forwarding.

       -k     Disable remote port forwarding.

       -p [address:]port
	      Listen  on  specified address and TCP port.  If just a port is given listen on all addresses.  up to 10 can be specified (default 22
	      if none specified).

       -i     Service program mode.  Use this option to run dropbear under TCP/IP servers like inetd, tcpsvd, or tcpserver.  In program  mode  the
	      -F option is implied, and -p options are ignored.

       -P pidfile
	      Specify a pidfile to create when running as a daemon. If not specified, the default is /var/run/dropbear.pid

       -a     Allow remote hosts to connect to forwarded ports.

       -W windowsize
	      Specify  the  per-channel  receive window buffer size. Increasing this may improve network performance at the expense of memory use.
	      Use -h to see the default buffer size.

       -K timeout_seconds
	      Ensure that traffic is transmitted at a certain interval in seconds. This is useful for working around  firewalls  or  routers  that
	      drop  connections  after a certain period of inactivity. The trade-off is that a session may be closed if there is a temporary lapse
	      of network connectivity. A setting if 0 disables keepalives.

       -I idle_timeout
	      Disconnect the session if no traffic is transmitted or received for idle_timeout seconds.

FILES

       Authorized Keys

	      ~/.ssh/authorized_keys can be set up to allow remote login with a RSA or DSS key. Each line is of the form

       [restrictions] ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIgAsp... [comment]

	      and can be extracted from a Dropbear private host key with "dropbearkey -y". This is the same format as used by OpenSSH, though  the
	      restrictions are a subset (keys with unknown restrictions are ignored).  Restrictions are comma separated, with double quotes around
	      spaces in arguments.  Available restrictions are:

       no-port-forwarding
	      Don't allow port forwarding for this connection

       no-agent-forwarding
	      Don't allow agent forwarding for this connection

       no-X11-forwarding
	      Don't allow X11 forwarding for this connection

       no-pty Disable PTY allocation. Note that a user can still obtain most of the same functionality with other means even if no-pty is set.

       command="forced_command"
	      Disregard the command provided by the user and always run forced_command.

	      The authorized_keys file and its containing ~/.ssh directory must only be writable by the user, otherwise Dropbear will not allow  a
	      login using public key authentication.

       Host Key Files

	      Host  key files are read at startup from a standard location, by default /etc/dropbear/dropbear_dss_host_key and /etc/dropbear/drop-
	      bear_rsa_host_key or specified on the commandline with -d or -r. These are of the form generated by dropbearkey.

       Message Of The Day

	      By default the file /etc/motd will be printed for any login shell (unless disabled at compile-time). This can also be disabled  per-
	      user by creating a file ~/.hushlogin .

ENVIRONMENT VARIABLES

       Dropbear sets the standard variables USER, LOGNAME, HOME, SHELL, PATH, and TERM.

       The variables below are set for sessions as appropriate.

       SSH_TTY
	      This is set to the allocated TTY if a PTY was used.

       SSH_CONNECTION
	      Contains "<remote_ip> <remote_port> <local_ip> <local_port>".

       DISPLAY
	      Set X11 forwarding is used.

       SSH_ORIGINAL_COMMAND
	      If  a  'command=' authorized_keys option was used, the original command is specified in this variable. If a shell was requested this
	      is set to an empty value.

       SSH_AUTH_SOCK
	      Set to a forwarded ssh-agent connection.

AUTHOR

       Matt Johnston (matt@ucc.asn.au).
       Gerrit Pape (pape@smarden.org) wrote this manual page.

SEE ALSO

       dropbearkey(8), dbclient(1)

       http://matt.ucc.asn.au/dropbear/dropbear.html

																       dropbear(8)
All times are GMT -4. The time now is 12:00 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy