Re: two SSH compatibility scenarios: can it work?

From: Nico Kadel-Garcia (nkadel@bellatlantic.net)
Date: 09/09/02 

From: "Nico Kadel-Garcia" <nkadel@bellatlantic.net>
Date: Mon, 09 Sep 2002 05:36:12 GMT

"Alan Tu" <alantu@students.uiuc.edu> wrote in message
news:GcId9.16964$m7.157709@vixen.cso.uiuc.edu...
> Hi, I use a lot of computers, especially Linux, and its nice to be able to
> log in remotely, and securely. Thank you OpenSSH. However, I have two
> connection scenarios which I'm not sure will work.
>
> 1. We are required to use SSH to log into the Engineering lab machines.
The
> server software displays this header upon telnet connection to port 22.
> SSH-1.99-OpenSSH_3.4p1
>
> My question is, can I make the server do public-key based authentication,
or
> must the sysadmin enable this explicitly? Right now the SSH2
authentication
> is password-based.

It's the sys-admin's job, but it's probably already set up by default. Ask
politely, or try with a public key in ~/.ssh/authorized_keys.

> 2. I still use Windows on my notebook for application compatibility. The
> campus people told us to install a specific software for SSH compatibility
> with all campus servers. Going to help/about, I see:
> SSH Secure Shell
> Version: 3.1.0 (Build 235)
> Copyright 2000-2001 SSH Communications Security Corp.
>
> This version has connected with the campus servers via password. However,
> because its for students, something called PKI has been removed. I run a
> Linux server at home which I would like to log into. Its a Mandrake system
> running OpenSSH 3.4p1 (patched). Here, I do want to use public-key
> authentication, so I generated a DSA key on the remote system, copied the
> id_dsa.pub into authorized_keys, and then copied id_dsa[.pub] onto my
> Windows computer. When I tried to connect, however, this Windows SSH
client
> said it could not read the keys and defaulted to password authentication.

Use a baseball bat on your Windows admins. Proceed directly to Putty, CygWin
with OpenSSH, or any of the other freeware clients.

> My question is, are the key formats incompatible? Is there a key I can
> generate that this Windows SSH client can import and use?

Look for CygWin, which uses OpenSSH natively: save yourself a lot of time
and grief in a lot of ways.

Relevant Pages

  • Re: FC6 VPN
    ... Then you can run any application you would like off the server by simply running it, or if you want to run a whole session, use gnomesession. ... ssh client that supports X forwarding, which is want you want to be looking at. ... SSH allows you to forward any local port to any remote port. ... If you need to connect to, say a windows share, you would forward your local port to the linux server through the ssh tunnel. ...
    (Fedora)
  • Re: OpenSSH, Telnet, Windows Authentication and double-hops
    ... deployment on a Windows network. ... Does this mean that you are setting SSH port forwarding ... does not provide the other side with either a Kerberos ticket, ... We're focusing on the OpenSSH for Windows distribution. ...
    (comp.security.ssh)
  • Re: OpenSSH, Telnet, Windows Authentication and double-hops
    ... >> ssh -L) ... JM> in seperate DOS console windows in this order: ... I'm using the 3.8 version of OpenSSH. ... >> Kerberos ticket, or your password in order to acquire one. ...
    (comp.security.ssh)
  • Re: OpenSSH Windows Security
    ... SFTP is typically defined as using an SSH capable FTP client to connect ... It uses the "native" commands on the server to provide ... (does Tuxcmd have a Windows port)? ...
    (alt.computer.security)
  • Re: OpenSSH, Telnet, Windows Authentication and double-hops
    ... >> ssh -L) ... JM> in seperate DOS console windows in this order: ... >> Kerberos ticket, or your password in order to acquire one. ... JM> We're focusing on the OpenSSH for Windows distribution. ...
    (comp.security.ssh)