Skip to main content
SSH Tanpa Kata Laluan (Passwordless SSH)

Tujuan: Login remote machine tanpa key in password
Radas: Mesin *nix,client and server,ssh installed.

Kaedah:

1- Gunakan ssh-keygen untuk menjanakan key-pair. Boleh gunakan RSA ataupun DSA



$ ssh-keygen -t dsa
Generating public/priva$ ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (/home/mnajem/.ssh/id_dsa):
/home/mnajem/.ssh/id_dsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase againte dsa key pair.
Enter file in which to save the key (/home/mnajem/.ssh/id_dsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again


ambil default setting sudah memadai.

2- Letakkan PUBLIC KEY *pub ke machine yang ingin dimasuki.
Namakan ia sebagai authorized_keys



cd ~mnajem/.ssh/
scp id_dsa.pub najmi@lala.lala.com:~/.ssh/authorized_keys


Should be done!
bole terus masuk tanpa key-in password

Boleh uji utk banyak-banyak machine dengan keypair berlainan. Cuba buat baris baru pada authorized_keys



skylynx:~ # ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (/root/.ssh/id_dsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_dsa.
Your public key has been saved in /root/.ssh/id_dsa.pub.
The key fingerprint is:
71:ab:a3:6c:92:e4:8f:df:c2:aa:35:d5:a0:31:b7:ea root@skylynx


Guna SCP lagi untuk hantar PUBLIC KEY tersebut,guna step-step sebagai cara paranoid,jadi saya namakan fail tersebut sebagai 'test':


scp id_dsa.pub najmi@cerebro:~/.ssh/test


Pada machine remote tersebut,masuk ke ~/.ssh/


najmi@cerebro:~/.ssh> ls
authorized_keys id_dsa.pub known_hosts test

Kita buat satu line baru utk senang baca:


echo " " >> authorized_keys

Letakkan PUBLIC KEY baru tadi kepada baris seterusnya:


cat test >> authorized_keys

Tada,dah ada dua client,passwordless



cat authorized_keys
ssh-dss AAAAB3NzaC1kc3MAAACBANFfeZNVtJBNGZ+SC8dFovPsTRlRB9i3bgmabLs7CiIq33k
BezhlxZ13ZaqJFDLq1+oOZx7iUYotU1K2WHboAVsSWg0vVyMjQSxLpv2woU8h0YtU0P0UrUn5
QIhmr+X80q6Yyc8P6dMrE7/zqYeFWGOhvJ+OG4NfKuitlUwyeO8rAAAAFQD9HvdZkWUFpFlED
N9UI8A5WOt+JwAAAIByi18sfkGPn8q+vDajVNs9G4aKgfiqWmfE7KL8F8U9LFSf9KdCTkzDpUv
ENO4ofyqUSAM9jLfP6SPcZDvNNjI4uBAnKKK8kbZHt5Rm93toCLFJspgKpLcyijhoGMoskHZh0
Uig8yi9cc4ZutMBBqIVqA+R4pnpatn8vpSc25i3CQAAAIEAq0ozGAJwF8WytjcunNMYwMa3OHr
QqftqySwVrKy6XxuPDDppa+arG6XeVHEKZn8qwb6PBoMnkx0jglWzvgxLCiC2p3y5zZXTRpMjP
lLsLVhNBdju9jR1BwPC8XvEPDmzo6Vhy+s2l2a4zn/QuPdpWQQN/r6kp9XvnGosY0VoJaw= mnajem@laserbeak

ssh-dss AAAAB3NzaC1kc3MAAACBAOU1viDjBdfoR6zgBlTDysOzsnubMP9s1PFu7cCRL9DsNiwp3Em5
rG8pFtjW6t72O6l5Hb0g6Y/0ZvNllxmd6cJZFBzTUrgmCfWrTNrfzl0DvOoOWITD8pp85deTpwY
VLnAjq6fQWkCh26aerJppp4OwLndbnsnS6Ho0AknxB+MpAAAAFQCtIfqdz4COIq5JY6j3VaW
unLCdvwAAAIBgXCPPec6iXMbcVbjcV2sfXNrQY20AHRQrcy+GoNp7gwztdTT99eotXMz01rpq
XF0AIIOumKeHi6jpuVTL7Q7yrtg1I6l2r/7VkJXPJj/GerHYPXz/q5KPe+7Wv+2dqBKYWB092Om
oFePzQBeyw2BFYbqL+iSxHKNcZ841h3AcyAAAAIEAmGKOHdRYgnuPJ4+7zU7ESRpfVIuH8jB9
FnRiOX5AAv/52UfjHupzk3Cy0oBo08vhq9FlI0tL0ryOEA3oEL9qABbbV/cpR0bbpoDtkC4gX+
wbD+HVzrWQpy5yIgmz5C67ByE5boJio5CPBNzT3n8P4VmDKEJfAgUm4vuvnX0zgrc= root@skylynx

Comments

Marjan Jeffry said…
This comment has been removed by a blog administrator.
Marjan Jeffry said…
Cool ! Now I know your DSA key ;)
0xff said…
ah,this just for demo purpose. doesn't mean anything :-)

Popular posts from this blog

Danga Bay, Chevrolet Optra and bio...(eh?) I thought it was Debian(haha). My colleague point me to the AirAsia flight turbin and he told me, "Macam debian punya logo" I saw a spiral on top the turbin blades. Pretty much like Debian Logo That's spark me to shoot for a pix. And I was warned by the airport staff. Uh,uh. Flash lamp will spark burst,eh? I was presented my "mock" research proposal. Suggested "Profiling Bioinformatics Application Behavior on Distributed Computing Architecture". Eh, will this gonna be bioinformatics specific or hardware optimization specific.or? Flashback: I spent almost a week at the office. When it's Subh azan,went back to my house for bath and pray. Reading all the journals and papers was not funny,really. Tough eye balls. No world cup. Ewh. And have some VCD lure. Uh,uh. you gonna be kidding. Anyway, I learned a lot and UTM SLAB Research Course is no joke. Really. My proposal has been corrected with comments so I have
Gue dengan S2 gue. Sronok banget!