Help on SSH: JB 5.6.5 (to 5.7.2.1!) USBNetwork

[dodger666]

Since I use Slackware it's easy.

!. Generate public & private keys on local-host

# ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase): ***LEAVE EMPTY***
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
c7:6c:e7:58:b6:c7:9e:08:ca:43:55:8c:a1:71:99:3c root@darkstar

2. Copy the public key to kindle

# mount /dev/(kindle device id) /mnt
# cp /root/.ssh/id_rsa.pub /mnt/usbnet/etc/authorized_keys
# umount /mnt

3. ssh (kindle IP), continue connecting & your good to go....


EDIT: Sorry if duplicate post...just scrolled & saw knc1's tutorial, which is a bit more in depth...

[knc1]

Only one comment -
Unless you specify a filename for the key, you over-write your system's default key.

If the only thing you ever now or in the future use pubkey authentication for, that is just fine.

[dodger666]

Quote:

Originally Posted by knc1

Only one comment -
Unless you specify a filename for the key, you over-write your system's default key.

If the only thing you ever now or in the future use pubkey authentication for, that is just fine.

True...but seeing as I only use pubkey authentication on my local lan...NP...and the example assumes you haven't setup a pubkey before...

[knc1]

Quote:

Originally Posted by dodger666

True...but seeing as I only use pubkey authentication on my local lan...NP...and the example assumes you haven't setup a pubkey before...

It was only a comment.
So perhaps making the assumption explicit in step #1's background would be a benefit to future readers.

Something simple, like:
"This example assumes this is the first use of a public key pair on your system and uses the default key pair name.
It that is not your case, pick a distinctive name for this key pair."

= = = =

Why?
This site has a much larger readership than membership.
When the non-members find (what they think is the complete) answer to the question they have in mind at the moment, they go away.
I.E: they aren't usually checking all of the context and discussion of something they find posted - just using it, hoping its complete.

= = = =

Don't be concerned about posting on a subject that may have been posted on before -
If you didn't find the other post, someone else didn't find it either.

Check the post number in the url of your browser -
It is over 3-1/4 million - - that is too much 'context' for anyone to read.

[eschwartz]

Quote:

Originally Posted by dodger666

Since I use Slackware it's easy.

Or any linux distro.
Since SSH is a core unix tool and has very limited offerings to Windows, the ease of use is not totally unexpected.
Alternatively, one could stop using toys like putty and get a proper Cygwin shell.

Although supposedly MS is working on a native PowerShell solution for SSH. (sshd without having to install Cygwin can only be an absolutely amazing thing...)

...

In addition to assuming people are using/overwriting the default key, you also assumed people are logging in as root, which is both unlikely and unwise. And unlikely because it is unwise.

[dodger666]

Quote:

Originally Posted by eschwartz

In addition to assuming people are using/overwriting the default key, you also assumed people are logging in as root, which is both unlikely and unwise. And unlikely because it is unwise.

Never understood why it's unwise...been using Linux for over 20 years & have heard all the arguments(which really, only apply to mission critical systems, not personal home systems), always logged in as root & never had any probs...

Anyway to make people happy...
Log in(as a user, or root - your choice), then run the above example, choosing any filename you wish for the pubkey. If not root, then su to root to mount the kindle.

[eschwartz]

Quote:

Originally Posted by dodger666

Never understood why it's unwise...been using Linux for over 20 years & have heard all the arguments(which really, only apply to mission critical systems, not personal home systems), always logged in as root & never had any probs...

There is no justifiable reason whatsoever to run every single userspace application and command as the root user.

Even a home system can be completely destroyed by shooting-yourself-in-the-foot syndrome.
And any bug or mistyped command no matter how minor has just been given permission to hose the operating system.

Because you know better than to practice really basic separation-of-powers...

It's like driving a car without wearing a seatbelt because "but I'm a good driver!!!"

Also, do you really want Adobe Flash running as the root user?

...

The Windows security model of having people login as the Administrator (full power to do anything and everything, with a halfhearted attempt later on to add a clickthrough warning popup) is 99% of the reason for Windows being the virus-ridden disaster it is. Anything that requires root permissions should be an explicit act.
Even if you are positive you will never have to deal with buggy software or mistyped commands or applications that make unsafe assumptions when run as the root user or applications that know darn well they shouldn't run as the root user and refuse to work... automatically assuming the same of others is, once again, just a really really unwise assumption.

tl;dr
find any of the numerous places on the internet that ask and answer this question...
Also consider what other peoples' setup is likely to be.

[dodger666]

Whatever.......agree to disagree............

[knc1]

Quote:

Originally Posted by dodger666

- - - -
If not root, then su to root to mount the kindle.

That may or may not be required, depending on both your distribution and the contents of your /etc/fstab.

Notes:
The keys generated live in the ~/.ssh directory.

The setting of ~ on the local machine has nothing to do with the setting of ~ on the remote machine.
I.E: You don't have to be 'root' on the local machine to sign into the Kindle as 'root'.

The sudo command (pre-setup on most distributions) will give you 'root' privledges for a limited amount of time.