[CentOS] Re: 2 SSH questions

Wed Jan 11 00:58:57 UTC 2006
Keith Morse <kgmorse at mpcu.com>

Paul Heinlein wrote:
> On Tue, 10 Jan 2006, Maciej ?enczykowski wrote:
>
>> the server file /home/username/.ssh/authorized_keys must contain a
>> line containing /home/username/.ssh/id_dsa.pub (use ssh-keygen -t dsa
>> to generate it)
>
> Further, you must ensure that, on the remote machine into which you're
> attempting to login,
>
> a) $HOME is not group-writeable or world-writeable
>
> b) $HOME/.ssh has 0700 permissions
>
> c) $HOME/.ssh/* have 0600 permissions
>
> (Actually, there are some $HOME/ssh/* files that can have looser
> permissions than 600, but they all work with 0600, so that's the way I
> keep them.)
>
And the cheap way I do this is  either "ssh-keygen -t dsa" or
"ssh-keygen -t rsa" which creates the directory structure every time,
and consistenly too.

Also if I remember correctly, ssh2 references were deprecated somewhere
along openssh 2.96 release.  Just ssh is used.  e.g.  /home/$username/.ssh/