{ 24 comments… read them below or add one }

1 Ashish 05.25.04 at 4:56 am

Hi Vivek Sir,

This is Ashish here. Yes… I caught you..
It very nice to see you once again. Where are you right now?? In india?? Wanted to meet you..
Now we are expecting some good technical documents from you as usual. Just now finished LLST written by you.

If possible please mail me at ashish_r_pathak@yahoo.com

Thanks and Regards,
/Ashish Pathak.
Pune, India.

2 Kevin 07.12.04 at 12:57 am

Hi Vivek,

I am kevin here from mumbai. Thanks for this article on SSH. Also i liked your Shell programming tutorial. If possible can you give me some examples on Local and remote port forwarding techniques on SSH.

Best regards,
Kevin

3 Anonymous 10.03.04 at 11:25 pm

Hi Vivek

this is Amit Shiknis here from Pune. Where are you now?How are you? i just gone through SSH docs its really very nice article.

Hope you will be fine. if possible mail me on amitshiknis@vsnl.net

regards
Amit

4 Vivek 08.03.05 at 12:04 am

Kevin,
See url
 for Local and remote port forwarding techniques on SSH:

5 GV 05.02.07 at 3:15 pm

Hello,

I installed openSSH client on windows.

Create a public key using the command

ssh-keygen -t rsa

Copied the key to the unix box using the command

scp .ssh/id_rsa.pub user@hostname:.ssh/authorized_keys

changed the permissions on authorized_keys
chmod 600

The USERNAME on the windows and unix box are the same.

When I try to run the remote script using ssh

ssh user@hostname scriptname

It Prompts me for the PASSWORD. I am not sure what am I doing wrong here. Any help on this is much appreciated.

Thanks
GV

I am including the client side trace when I used ssh below.

C:\Documents and Settings\gvarada\.ssh>ssh -v stlap08d whoami
OpenSSH_3.8.1p1, OpenSSL 0.9.7d 17 Mar 2004
debug1: Reading configuration data /etc/ssh_config
debug1: Connecting to stlap08d [172.19.1.24] port 22.
debug1: Connection established.
debug1: identity file /home/gvarada/.ssh/identity type -1
debug1: identity file /home/gvarada/.ssh/id_rsa type 1
debug1: identity file /home/gvarada/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.1
debug1: match: OpenSSH_4.1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.8.1p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024

6 Jon 05.24.07 at 10:00 am

Your method of not giving a pass phrase is convenient but not really secure (IMHO). Much better to create a key with a pass phrase, and use ssh-add to enter the pass phrase ONCE PER SESSION. That is, before you ssh to the remote machine, run ssh-add which will prompt you for the passphrase. For the rest of the session, ssh-add will authenticate for future ssh connections, which are in effect ‘password-less’

7 Jon 05.24.07 at 10:02 am

to the moderator: I withdraw my previous comment, the post does include ssh-add, but I had not read it thoroughly

8 Gabriel Menini 06.26.07 at 7:59 pm

Nice tip. Thanks.

Now I did the same for an OpenSSH server which listen on port 22000. Actually, there’s a firewall listening no that port, which redirects the incoming traffic to a LAN’s OpenSSH server.

I’ve copied the key to the /home/user/.ssh/authorizedkeys but the client doesn’t connect without prompting for the password…

9 Arul 07.18.07 at 6:55 am

Hi, I am new to SSH. Can you tell me how can I automate connecting to remote unix boxes using SSH through a shell script and the SSH connections should take the password at runtime possibly using a config file

something like

cat server_repo.txt:
abc_server abc/def

where abc_server – unix box
abc – username
def – password

Note – I dont want to use “Passwordless Connectivity”

Thanks,
Arul.

10 BusyBecky 09.05.07 at 2:49 pm

Hi,

Why is it mandatory to have the same username on both source and target servers?
Is there any workaround to this limitation?

Thnx.

11 vivek 09.05.07 at 7:41 pm

No it is not required. You can use user name tom on client and username jerry on server.

12 surendra kumar 05.21.08 at 4:36 am

hi vivek,
i think this method will not work for different users
ie what i want to say is user1 can not login to user2 account with out password in to server can u conform it and revert back again?
thanks in advance
surendra

13 Shankar 09.17.08 at 4:39 pm

Hi Vivek,

In your step 3 as below. It will prompt for the password of user vivek on rh9linux.nixcraft.org to complete the copying of the public key.

$ scp .ssh/id_rsa.pub vivek@rh9linux.nixcraft.org:.ssh/authorized_keys2

Is there any method by which I can pass this value non-interactively.

Thanks
Shankar

14 Brendan 10.18.08 at 12:51 pm

Regarding using scp to copy is_rsa.pub into authorized_keys2, I don’t believe this to be a good idea if there is any chance that you need more than one user or public key to have access to the server.

In this case, rather do the following:
ssh vivek@rh9linux.nixcraft.org “cat >> .ssh/authorized_keys2″ < .ssh/id_rsa.pub

This will pipe the public key through the ssh session and append it to the existing file if it exists. Otherwise it will create the file with the contents of your id_rsa.pub

15 Tricky 04.15.09 at 6:13 pm

Lol. Came back here to figure out how I did that thing ^^ before. :D

… and realised I hadn’t explained properly:
the authorized_keys2 file can contain multiple keys. By using scp, you might overwrite any previously-placed keys with a single key. By appending (using the >>) you specifically add your key to the end of the authorized_keys2 file and you won’t lose any previous keys.

16 sandip 04.23.09 at 7:04 am

hi
i hav did as u mentioned abow but it wont work it is asking for the passwd

17 hari 05.29.09 at 7:49 am

Hi,

Please run # passwd -d login_name for each user and
then check.

regards
hari

18 Rajesh 06.12.09 at 6:28 am

HI Vivek,

Your article on SSH is very nice. It very helpfull for us.

Keep doing the great work

Regards,
Rajesh

19 sreekar 09.08.09 at 7:05 pm

sir,
your article is very educational. i also referred your tutorial on shell scripting. The way you write in simple language makes a difficult concept also understandable. I think this is a trait of all Indian writers.

thank you for the good work

sincerely,
sreekar

20 Vivek Gite 09.09.09 at 4:30 am

@Sreekar,

Thanks for feedback!

I’m glad to know this site helped you to understand Linux and shell scripting.

21 Wanga 10.22.09 at 9:55 am

Am not able to login into another computer even after installing ssh on both computers.
It tells me the permission denied ,please try again and when i try again it doesnt log in.
And yet other people are able to use ssh comfortably. My computer is also uptodate

22 Tricky 10.22.09 at 12:46 pm

Hi Wanga

Likely you have not got the ssh daemon running on the computer you want to connect to, though there could be many other reasons it is not working. Could you paste any error messages you might be getting when you try to connect?

23 crazyswap 01.09.10 at 8:26 am

I can’t log into my server,it shows network error:connection time out.kindly help.

24 Tricky 01.09.10 at 3:04 pm

Hi crazyswap

Try running a tcptraceroute (http://en.wikipedia.org/wiki/Tcptraceroute) to your server to confirm that the problem is not the network:
tcptraceroute server.name.or.ip 22

You may need to install tcptraceroute.

If tcptraceroute fails only on the last step then it is likely that the ssh service is not running on the server. If your server is under paid hosting, contact your hosting provider to find out what the cause is.

Leave a Comment

You can use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Tagged as: , , , , , , , , , , , , ,

Previous post:

Next post: