Recent Edits


AutoGrader/Autolab	1 day 5 hours ago
Cadence License Server	2 weeks 10 hours ago
OCaml Admin	3 weeks 3 days ago
Submit Script Setup Letter	4 weeks 4 days ago
OnGuard Card Access	11 weeks 1 day ago
How to Install the OnGuard Desktop Client	22 weeks 4 days ago
How Do I Restore Backups of Lost Files?	34 weeks 4 days ago
CSE Conference Rooms	1 year 2 weeks ago
National Science Foundation (NSF) Facilities Statement	1 year 3 weeks ago
How to Create Your CSE Home Page	1 year 6 weeks ago

AutoGrader/Autolab

1 day 5 hours ago

Cadence License Server

2 weeks 10 hours ago

OCaml Admin

3 weeks 3 days ago

Submit Script Setup Letter

4 weeks 4 days ago

OnGuard Card Access

11 weeks 1 day ago

How to Install the OnGuard Desktop Client

22 weeks 4 days ago

How Do I Restore Backups of Lost Files?

34 weeks 4 days ago

CSE Conference Rooms

1 year 2 weeks ago

National Science Foundation (NSF) Facilities Statement

1 year 3 weeks ago

How to Create Your CSE Home Page

1 year 6 weeks ago

OpenSSH

Introduction

OpenSSH (OpenBSD Secure Shell) is a set of computer programs providing encrypted communication sessions over a computer network using the SSH protocol. It was created as an open source alternative to the proprietary Secure Shell software suite offered by SSH Communications Security.

OpenSSH is developed as part of the security conscious OpenBSD project, which is led by Theo de Raadt. The project's development is funded via donations.

Usage

Compute Systems	Invocation	Version(s)
Red Hat Linux (64-bit)	`% /usr/bin/ssh` `% /usr/bin/scp` `% /usr/bin/sftp` `% /usr/bin/sshd` `% /usr/bin/ssh-keygen` `% /usr/bin/ssh-agent` `% /usr/bin/ssh-add` `% /usr/bin/ssh-keyscan`	4.3 (default)

Notes

Access Control.
Auth Files

The CSE ssh install is configured to ignore the rsh .rhosts file and instead use a file called .shosts. This has the advantage of allowing the user to have different access policies for an unencrypted rsh login and an encrypted ssh login. If you want to have the exact same policies for both tools, you can just symlink .shosts to .rhosts:
```
% ln -s .rhosts .shosts
```
In addition to .shosts, ssh allows you to tell the remote machine who can login using the public key pair that you generated earlier. The keys that can login to the machine are listed in a file called ~/.ssh/authorized_keys on the remote machine. If you only have one public key pair, you can generate the authorized_keys file by copying your public key file (called ~/.ssh/identity.pub by default):
```
% cp ~/.ssh/identity.pub ~/.ssh/authorized_keys
% scp ~/.ssh/authorized_keys remotemachine:.ssh
```
Once the keys are in place, it will no longer prompt you for a password, but instead prompt you for your passphrase to "unlock" the keys.

One of the main advantages to using the passphrase is that you can provide the same level of convenience as the .shosts file without having to know what machines you will be coming from. This is particularly handy for dynamic host assignments like dialins and DHCP clients. This feature is called the ssh agent.

References

http://en.wikipedia.org/wiki/Openssh
http://en.wikipedia.org/wiki/Secure_Shell
% man ssh

UB CSE IT Service Catalog

Login with your UBIT Credentials