Talk:SSH
Before creating a discussion or leaving a comment, please read about using talk pages. To create a new discussion, click here. Comments on an existing discussion should be signed using
~~~~
:
A comment [[User:Larry|Larry]] 13:52, 13 May 2024 (UTC) : A reply [[User:Sally|Sally]] 08:35, 5 November 2024 (UTC) :: Your reply ~~~~
Clarity
Could you please make this sentence a little bit clearer. I have trouble understanding it, and as a result, translating it into my own language ? "then hit enter like 5 times to generate your key move the client ~/.ssh/id_rsa.pub to the server user your logging in as ~/.ssh/authorized_keys"
Many thanks for this and for the rest.
- thanks needle, that was just rough notes to generate connectivity when many variables were unknown. 666threesixes666 (talk) 07:59, 19 March 2014 (UTC)
sshfs-fuse & sftp
sshfs-fuse & sftp examples need to be documented. this articles severely lacking with out it. 666threesixes666 (talk) 07:59, 19 March 2014 (UTC)
- Feel free to document them. --Maffblaster (talk) 08:48, 11 January 2017 (UTC)
sshpass
Maybe it will be usefull to add information about sshpass and how to use it with sshfs? --Gragory (talk) 15:59, 22 April 2015 (UTC)
Article title
This article mainly deals with OpenSSH, however there are other SSH implementations out there. The title should be moved to OpenSSH.
ng0 (talk) 11:32, 3 June 2016 (UTC)
- Agreed, this wiki does not name article after protocols but like the package name. This article should be moved to OpenSSH. I would have moved this article to OpenSSH but I do not know about the translation implications Needle (talk) 12:36, 3 June 2016 (UTC)\
- I understand the dilemma. With that being said, what other implementations of SSH are available in Gentoo? I don't know a lot about them. Do those other SSH implementations have their own articles (yet)? If not, then it probably doesn't matter as much having OpenSSH in this article, since it's the one that's included in the @system set and therefore the one that's included on every system by default. --Maffblaster (talk) 17:47, 3 June 2016 (UTC)
- I did not put "Gentoo" in my sentence for a reason. There are other ssh implementations out there, I am not aware of the ones available in Gentoo, a short eix ssh and search on http://gpo.zugaina.org/ should help.
- There's lsh, however not (yet) in gentoo. If nothing else is available currently the softwares name the article talks about is still OpenSSH. If it were generic (I'm not an ssh expert to judge this) and the top wouldn't explicitly mentions OpenSSH, I would agree.
- An OpenSSH article can still say "this is the default ssh implementation available in gentoo". A bad comparison, but I think to use one major big application to describe a protocol while other applications - not yet available in the wiki - might differ which use the same protocol is bad. To prevent a collision in the future or possible irritations.
- wdyt?
- ng0 (talk) 18:00, 3 June 2016 (UTC)
- Since the term "SSH" is still basically synonymous with "OpenSSH", I don't mind OpenSSH being used to describe the primary and default way of using SSH utilities on a Gentoo system. Having OpenSSH in the body of this article is easier for our users because the concept of SSH is still tightly associated to OpenSSH (although it's becoming less so with LibreSSH and perhaps other implementations). I mean, if we wanted to go all out, we could mention dev-python/paramiko and other SSH protocol libraries, but I think if we did that we'd be losing what most wiki users are coming here for, which I believe is to be instructed and educated on using SSH utilities on their Gentoo system(s). If the article only described the SSH protocol, there's not a lot that would be useful for our users, in my opinion.
- If one of you guys would like to do the work in migrating things, I have no issues against making this "SSH" article a meta article linking to OpenSSH, LibreSSH, lsh, and some other implementations. However, before that is done, I'd like to see those other articles available and well written here on the wiki so that our users would know how to use them as replacements for OpenSSH. I guess my question to you above was somewhat rhetorical because I don't see LibreSSH integration into Gentoo (yet). Even the developers don't have a way of migrating to it as a drop-in replacement. Last I checked Anthony G. Basile (blueness) was working on it. There was also sincerity to my question, because I wasn't sure if one of you was working on guides to help our users with other implementations.
- To offer a solution, until we have better replacements for SSH available for our users in Gentoo, we're better off having a redirect from an article titled "OpenSSH" to this "SSH" article, since it is really the only implementation easily available for our users. Thoughts? Bad solution? Good solution (for now)? Kind regards, --Maffblaster (talk) 18:52, 3 June 2016 (UTC)
- This (linking OpenSSH to SSH) is a solution which works for me. And as it is common known and so far no other articles and implementations are available in gentoo portage, the metapage sounds like a solution one could come back to once it is necessary. That's in my opinion when at least lsh and libressh (first time I heard of it) are added and available. ng0 (talk) 19:35, 3 June 2016 (UTC)
- I know the discussion is closed. However, From my point of view, doing a forwarder is not a solution, it is a workaround. Problem is all articles in this particular wiki are named after packagenames, like OpenNTPD, lie rsyslog. etc. and the point is there is no SSH package in the portage. SSH is just the protocol. Just moved NFS to nfs-utils. I'd like this article to be moved to OpenSSH, then all pages remain consistent, All over the wiki. I should have moved this article to OpenSSH 3 years ago. It's my opinion. No need to discuss a closed topic. This entry is for the log. Needle (talk) 11:49, 6 June 2016 (UTC)
Server configuration
The link Sven Vermeulen (SwifT) 's OpenSSH guide does not exist anymore.
Bugalo (talk) 08:19, 20 April 2020 (UTC)
Troubleshooting Additions
I've just had some pain setting up a passwordless ssh login to a remote system and have a couple of suggestions for the troubleshooting section.
First is that the permissions in the ~/.ssh directories (both ends) are important, i.e. everything 600, except the *.pub files which may be 644 or 600. Always worth checking.
Second is that if you've created a key with a different name, e.g. id_rsa_nopw, you need to tell ssh (local) about it otherwise it won't use it and it won't show up in the "ssh -v" logging. You need to add key's filename to the local /etc/ssh/ssh_config file - in my case just for one particular host:
Host lion IdentityFile ~/.ssh/id_rsa_nopw
--Wjb (talk) 12:25, 23 November 2021 (UTC)
- Thanks for the suggestion! I've been focusing a little on this article of late, so I may try to look into this.
- If you had the time, it would be great if you could add something yourself - quick start to editing the wiki ;). No need to worry about formatting or "wiki-compliance" if you don't want, someone else can integrate additions later. _Anything_ added to the wiki that can help users with technical issues can be great :).
- Not saying that adding a comment to this page is not already really helpful though, thanks again ^^.
- I've added the permissions one. but out of time at the minute so I'll do the config one later today.
- That's great, thanks! I'm sure this will be much appreciated by anyone having that issue.
- Or a couple of months later :-)
- Don't worry, that really isn't late, documentation time-frame wise xD ;). That looks really good, thanks ! Seems like that will be of great help for anyone running into this !
- Btw, there is always plenty to do on the wiki, if you ever feel like having a go, you can check out the contributor's guide any time ;). There is a section on parts of the wiki that could do with a bit of attention... /plug xD.
- Don't worry if your contribution gets changed, it's not to do with the quality of the work - just putting things in line with the wiki writing style. I'll do it when I get the chance, but someone may come along and do it first... I'll close this conversation to keep the open ones down. It can be reopened, if needed.
- Thanks again for the contribution; all the best.
Disabling Passwords Guidance
The guidance about disabling authentication via a password may be outdated. At a minimum, just setting PasswordAuthentication
to no
and restarting SSHd isn't sufficient to prevent password authentication over SSH. It looks like KbdInteractiveAuthentication
has to be set to no
(and SSHd restarted) for passwords to no longer be accepted.
Also see: https://superuser.com/questions/1022637/ssh-passwordauthentication-no-has-no-effect --GuyEP (talk) 01:44, 15 June 2024 (UTC)