Previous Thread
Next Thread
Print Thread
Rate Thread
#4487 10/22/04 11:17 PM
Joined: Jun 2003
Posts: 807
Likes: 2
G
Ghost Offline OP
UGN Super Poster
OP Offline
UGN Super Poster
G
Joined: Jun 2003
Posts: 807
Likes: 2
I figured i'd post on this just incase not everyone knew about this already. All my knowledge on this topic can be credited to Gizmo as he first introduced me to it.

SSH Keys allow you to login to a remote machine via SSH by authenticating with a key instead of a username and password combination. You can still setup password authentication on your end if you wish, but it is not required. In my opinion this is WAY more secure, how are you going to guess someone's 3072 bit RSA key to login with? Yeah, exactly. Anyways, here is how you set it up:

Go to www.ssh.com and download the offical SSH client. Extract and compile, or install it, whichever your platform requires. After you have done that, start it up. Now, having never done this with *nix, the steps might be a little different, but here is how you go about generating a key. Edit>Preferences> +Global Settings>+User Authentication>+Keys>Generate New. Select the size and type of key, Might i suggest RSA 3072. After you've done that, you need to create an authorized keys file, and upload it to the server you wish to login to. After you've generated your key, open the key file (Edit>Preferences> +Global Settings>+User Authentication>+Keys>View). Get the key, the actual key starts with an 'A' and ends in a '='. If you're using windows, open this with wordpad, not notepad (you'll need to find the file, should be in C:\Documents and Settings\[Your User Name]\Application Data\SSH\UserKeys\). After you have the key, open your text editor, and paste the key to the file. Make sure your text editor is not wrapping the text. After this, add "ssh-rsa" (or "ssh-dsa" if you used DSA, which you shouldn't do) to the front of the key. It should look like...
Code
ssh-rsa AAAAA=
of course, "AAAAA=" should acctually be your key. After you have done that, you need to upload your authorized keys file. Save the file as "authorized_keys2". Login to your account on the machine you want to connect to, create ".ssh" in the home directory, change to this directory, and upload the authorized_keys2 file. After you have done that, chmod .ssh and authorized_keys2 700. After that, go back to your SSH window, Click "Quick Connect" enter your information, and select public key to the authentication method. Click Connect, and wait for the password prompt (if you set a password for your key). Now, i'm not going to go into many other details about the SSH client, but there is a bunch of other fun stuff you can do. If you have any trouble doing the above, please feel free to post a question.

#4488 10/22/04 11:20 PM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
Don't forget, you can have a 1 word comment after the key, so it would look like:
Code
ssh-rsa [key] [comment]
Make sure it's all on one line also... If you do it wrong you'll lock SSH for your account and you won't be able to login at all wink ...


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
#4489 10/23/04 12:48 AM
Joined: Mar 2004
Posts: 419
S
UGN Member
Offline
UGN Member
S
Joined: Mar 2004
Posts: 419
The new Navy Marine Corps Intranet system uses a system to log on that sounds similar but it uses what they call PKI certificates is this what it basically is? They place the certificates on a CAC card (an id card with an embeded microchip which contains all my medical, dental, and emeergency info on it, along with the certificates) I stick the card into a card reader on the keyboard and then i am free to view a lot of websites and info i would not be allowed to if i didn't have the certificate.


D, world destruction
Over and overture
N, do I need
Apostrophe T, need this torture?-They Might Be Giants
#4490 10/23/04 11:53 AM
Joined: Dec 2002
Posts: 3,255
Likes: 3
UGN Elite
Offline
UGN Elite
Joined: Dec 2002
Posts: 3,255
Likes: 3
Wow they have come a long way... I rember viewing adult content from my Commo office in the army. They have moved to the smart chip cards as well. They were just starting to "BLOCK" access to certain sites and places when I left. I remember getting into places I shouldn't have on the network because they had almost zero security.

#4491 10/24/04 04:10 AM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
The SSH keys use RSA; I like using 3072 bit but you can use lesser if you want (don't know why you'd want to but you can)


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
#4492 10/24/04 12:20 PM
Joined: Dec 2002
Posts: 3,255
Likes: 3
UGN Elite
Offline
UGN Elite
Joined: Dec 2002
Posts: 3,255
Likes: 3
less bandwidth...

#4493 10/25/04 12:50 AM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
I haven't had any isssues connecting at 28.8KBPS lol...


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner

Link Copied to Clipboard
Member Spotlight
Phatal
Phatal
Houston, TX
Posts: 298
Joined: April 2004
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Cyrez 1
Girlie 1
unreal 1
Crime 1
Powered by UBB.threads™ PHP Forum Software 7.7.5