[SunHELP] Using ssh-agent with Gnome on Solaris 8

Robert Banniza sunhelp at sunhelp.org
Sun Dec 30 11:38:08 CST 2001 

Sambo,
Hi there. Thanks for your response. However, not entering a passphrase
for your keys is very dangerous and should not be used this way. In
order to get the same type of functionality, you should enter a strong
passphrase when building keys using ssh-keygen. To be able to log into
remote servers without entering a passphrase every time, you use two
utilities called ssh-agent and ssh-add. What ssh-add allows you to do
after you run ssh-agent is to authenticate to your key once and then any
machine that has your public key will allow you to sign on without a
password b/c ssh-agent takes cars of this. I want to run GNOME within
the ssh-agent and ssh-add process so that any terminal I open will allow
me to log in to remote machines the correct way. If you need more help
understanding how this works, check out the SSH Administration manual.

Robert

Robert Banniza
Senior UNIX Administrator
Ascension Health
Phone: 812-228-2157
>>> s at avoidant.org 12/30/01 08:15 AM >>>
Robert Banniza wrote:

> 'gnome-session' to run under ssh-agent control. I want to do this to
> allow myself to set my SSH key passphrase once and be able to log into
> other machines via keys. Can anyone tell me how you have this setup



MIssing something here. What's this have to do with Gnome or CDE?

At a command prompt, type "ssh-keygen" to generate your keys. Enter
passphrase when requested, or don't enter one if you'd like it to work
unatended. It will generate two files; identity and identity.pub. Save
identity.pub on the machines you connect to in the file
~/.ssh/authorized_keys or ~/.ssh/authorized_keys2 (depending on
protocol) and you should be good to go. 

---sambo
_______________________________________________
SunHELP maillist  -  SunHELP at sunhelp.org
http://www.sunhelp.org/mailman/listinfo/sunhelp



NOTE: This e-mail message may contain information that may be privileged, 
confidential, and exempt from disclosure.  It is intended for use only by 
the person to whom it is addressed. If you have received this message in 
error, please do not forward or use this information in any way, delete it 
immediately, and contact the sender as soon as possible by the reply option
or by telephone at the telephone number listed (if available).  Thank you.

More information about the SunHELP mailing list