Re: can someone please provide a step by step instruction on how to get openssh to work without password

From: Tino Schwarze (tino.schwarze@informatik.tu-chemnitz.de)
Date: 05/07/02 

From: Tino Schwarze <tino.schwarze@informatik.tu-chemnitz.de>
Date: 7 May 2002 20:55:11 GMT

Tino Schwarze <tino.schwarze@informatik.tu-chemnitz.de> wrote:

>> i've been reading some posts and still confused. i'm going berserk
>> trying to figure out how to get it to work and what needs to be done

> (Out of my head) You want password-less access from host1 to host2.

> 1. Execute ssh-keygen on host1.
> -> writes .ssh/id_rsa, .ssh/id_rsa.pub, .ssh/id_dsa, .ssh/id_dsa.pub
> 2. Execute the following command on host2 (assuming, you're running a
> unix derivate with a bourne-like shell, might work with csh though)
> cat .ssh/id_{rsa,dsa}.pub | ssh host2 "cat - >>.ssh/authorized_keys"

Of course, only using ssh-agent and passphrase-protected identities is
really secure. But the approach given above can be used inside a
"security domain". I for myself, for example, do not use password-less
auth from home to university and vice versa. This way, these two
"security domains" are separated and don't get both compromised if one
is compromised.

Always keep in mind: If one get access to your private key(s) (the id_dsa
and id_ras files), he/she will be able to access all hosts where the
public equivalents are found in .ssh/authorized_keys.

Better get used to ssh-agent.

Bye, Tino. 

-- 
Those who desire to give up Freedom in order to gain Security,
will not have, nor do they deserve, either one. (T. Jefferson)