Configure OpenSSH to use TCP-Wrappers inetd super server
Key generation complete.
Enter file in which to save the key (/home/admin/.ssh/identity): [Press Enter]
Enter passphrase:
Enter the same passphrase again:
Your identification has been saved in /home/admin/.ssh/identity.
Your public key is:
1024 37
14937757511251955533691120318477293862290049394715136511145806108870001764378494676831
29757784315853227236120610062314604405364871843677484233240919418480988907860997175244
590202154102756903055846534063365635584899765402181 admin@deep.openna.com Your public key has been saved in /home/admin/.ssh/identity.pub
NOTE: If you have multiple accounts you might want to create a separate key on each of them. You may want to have separate keys for:
• Your Mail server
• Your Web server
• Your GW server
This allows you to limit access between these servers, e.g. not allowing the Mail account to access your Web account or the machines in the GW. This enhances the overall security in the case any of your authentication keys are compromised for any reason.
Step 2
Copy your local public keys (identity.pub) to the “/home/admin/.ssh” directory remotely under the
name, say, “authorized_keys”.
NOTE: One way to copy the file is to use the ftp command or you might need to send your public key in electronic mail to the administrator of the system. Just include the contents of the ~/.ssh/identity.pub file in the message.
Changing your pass-phrase
You can change the pass-phrase at any time by using the -p option of ssh-keygen.
• To change the pass-phrase, use the command: [root@deep /]# su admin [admin@deep /]$ ssh-keygen -p
Enter file key is in (/home/admin/.ssh/identity): [Press ENTER] Enter old passphrase:
Key has comment ‘admin@deep.openna.com’ Enter new passphrase: Enter the same passphrase again: Your identification has been saved with the new passphrase.
OpenSSH Users Tools
The commands listed belows are some that we use often in our regular use, but many more exist, and you should check the man page and documentation for more details.
ssh
The “ssh” (Secure Shell) command provides secure encrypted communications between two untrusted hosts over an insecure network. It is a program for logging securely into a remote machine and executing commands from there. It is a suitable replacement for insecure programs like telnet, rlogin, rep, rdist, and rsh.