PDA

View Full Version : [all variants] SSH - private keys and disabling password authentication



Nixie Pixel
February 13th, 2009, 03:45 AM
Hi, I am trying to set up a secure OpenSSH server accessible from the internet. I have successfully set up a public/private key pair and been able to log in from one client to the server. I have opened and forwarded the proper port on my firewall and tested from outside the network, and was successful connecting.

I have two questions now. First, can I use the same private key on multiple clients, or do I need to generate a new private/public key pair on each client machine and copy over the public key for each to the server?

Also, how do I turn off the password authentication fallback, so no one can brute-force attack my server?

Thanks!

Edit: Nevermind the second question, I found out how to turn off password authentication, by editing /etc/ssh/sshd_config

cerealtx
February 13th, 2009, 04:21 AM
here found some info on it been playing around with this myself, its about 1/2 down the page at the "Distributing your public key" section
http://toic.org/2008/11/17/ssh-basics/

Nixie Pixel
February 13th, 2009, 04:47 AM
Thanks, the answer is pretty simple.

Copy the private key file over to the other client, and chmod 600. Voila!

Thanks!