Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

ssh private keys [SOLVED]
 View unanswered posts
View posts from last 24 hours

rackathon
 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
pmatos
Veteran
Veteran


Joined: 06 Jun 2003
Posts: 1161
Location: Southampton, UK
PostPosted: Tue May 06, 2008 3:49 pm    Post subject: ssh private keys [SOLVED] Reply with quote
Hello all,

I assume that each user should only have a key pair, instead generating a new pair for each PC they have. So, the question now is, where should you have the private key? Should you keep a copy in each of your PCs? You probably need to in order to do passwordless ssh, right?

Cheers,

Paulo Matos

Last edited by pmatos on Tue May 06, 2008 4:36 pm; edited 1 time in total
Back to top
View user's profile Send private message
krinn
l33t
l33t


Joined: 02 May 2003
Posts: 895
PostPosted: Tue May 06, 2008 3:58 pm    Post subject: Reply with quote
in ~/.ssh as simple as that
Back to top
View user's profile Send private message
pmatos
Veteran
Veteran


Joined: 06 Jun 2003
Posts: 1161
Location: Southampton, UK
PostPosted: Tue May 06, 2008 4:00 pm    Post subject: Reply with quote
krinn wrote:
in ~/.ssh as simple as that


I was asking, if you have several computers, should you have a copy of the same private key in .ssh?
Back to top
View user's profile Send private message
timeBandit
Moderator
Moderator


Joined: 30 Dec 2004
Posts: 2115
Location: here, there or in transit
PostPosted: Tue May 06, 2008 4:11 pm    Post subject: Reply with quote
Yes. If users sign in to one host from multiple clients, each user has only one public key--stored at the host--and they'll need the same matching private key on each client.

When one user connects to multiple hosts, it's a matter of preference. Using a single key pair and authorizing the public key on each host is easier for the user: one private key unlocks access to all hosts. That's also a vulnerability: compromising one key compromises all hosts. It's more secure to require a separate key pair for each host, but that's harder on the user, who must use the correct private key to connect to each host.
_________________
Plants are pithy, brooks tend to babble--I'm content to lie between them.
Super-short f.g.o checklist: Search first, strip comments, mark solved, help others.
Back to top
View user's profile Send private message
pmatos
Veteran
Veteran


Joined: 06 Jun 2003
Posts: 1161
Location: Southampton, UK
PostPosted: Tue May 06, 2008 4:36 pm    Post subject: Reply with quote
ok thanks!
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT - 5 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2006 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. Powered by phpBB 2.0.22-gentoo-p6 © 2001, 2002 phpBB Group