Nixie Pixel
February 13th, 2009, 03:45 AM
Hi, I am trying to set up a secure OpenSSH server accessible from the internet. I have successfully set up a public/private key pair and been able to log in from one client to the server. I have opened and forwarded the proper port on my firewall and tested from outside the network, and was successful connecting.

I have two questions now. First, can I use the same private key on multiple clients, or do I need to generate a new private/public key pair on each client machine and copy over the public key for each to the server?

Also, how do I turn off the password authentication fallback, so no one can brute-force attack my server?


Edit: Nevermind the second question, I found out how to turn off password authentication, by editing /etc/ssh/sshd_config

February 13th, 2009, 04:21 AM
here found some info on it been playing around with this myself, its about 1/2 down the page at the "Distributing your public key" section

Nixie Pixel
February 13th, 2009, 04:47 AM
Thanks, the answer is pretty simple.

Copy the private key file over to the other client, and chmod 600. Voila!