This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
tutorials:ssh-sdf [2012/02/15 12:14] – Fix link memnon | tutorials:ssh-sdf [2012/02/15 15:41] (current) – Improvements recommended by wliao memnon | ||
---|---|---|---|
Line 45: | Line 45: | ||
Logging in with SSH key authentication means that you do not have to use your SDF account password. Instead, you generate a ' | Logging in with SSH key authentication means that you do not have to use your SDF account password. Instead, you generate a ' | ||
- | This may sound insecure or easily exploitable. In fact though, due to much research and theory, it can be very secure. Notice "can be" in that last sentence. The key files are taking the place of a password in proving to the server that you're really you. Just like you have to keep passwords secret, the strength of this method relies on you following certain guidelines. You will generate a pair of mathematically related keys: one public and the other private. **You should never give out your private key, nor should you make the file that contains it readable by any other user. This would be like storing your password in a world-readable file.** Only your *public* key will be listed on the server. Ensuring that your private key remains private is the most important of the guidelines that I mentioned. On to the instructions: | + | This may sound insecure or easily exploitable. In fact though, due to much research and theory, it can be very secure. Notice "can be" in that last sentence. The key files are taking the place of a password in proving to the server that you're really you. Just like you have to keep passwords secret, the strength of this method relies on you following certain guidelines. You will generate a pair of mathematically related keys: one public and the other private. |
=== Windows instructions === | === Windows instructions === | ||
Line 57: | Line 57: | ||
You can then add a passphrase to your key, and use just that one passphrase whenever you log in to an ssh server using your key. Alternately you can use no passphrase. Be aware though that if //you// don't have to use a password to login from your computer, then //neither would anyone else that sits down at your computer// or otherwise accesses your local account. | You can then add a passphrase to your key, and use just that one passphrase whenever you log in to an ssh server using your key. Alternately you can use no passphrase. Be aware though that if //you// don't have to use a password to login from your computer, then //neither would anyone else that sits down at your computer// or otherwise accesses your local account. | ||
- | The key comment is for your personal convenience, | + | The key comment is for your personal convenience, |
Next, you need to configure PuTTY to use this key. Fire up PuTTY and load your session or create a new one. Then in the Category list on the left, select " | Next, you need to configure PuTTY to use this key. Fire up PuTTY and load your session or create a new one. Then in the Category list on the left, select " | ||
Line 64: | Line 64: | ||
0. Copy the contents in the Key Generator window (" | 0. Copy the contents in the Key Generator window (" | ||
+ | Note that we can also extract from existing PuTTYgen-type private keys: just load into it, and the public key should be there. | ||
1. Log in as normal and run the following commands. | 1. Log in as normal and run the following commands. | ||
Line 80: | Line 81: | ||
You should now be able to log in using SSH Key Authentication. | You should now be able to log in using SSH Key Authentication. | ||
- | |||
- | ---- | ||
- | |||
- | I succeeded somewhat differently. In my trial, public key should be rather copied not from the saved public key, but from **Public key for pasting into OpenSSh authorized_keys file:** textbox in the PuTTYgen window. Note that we can also extract from existing PuTTYgen-type private keys (just load into it, and the public key should be there.). | ||
=== OpenSSH instructions === | === OpenSSH instructions === | ||
Line 115: | Line 112: | ||
=== What is port tunneling good for === | === What is port tunneling good for === | ||
- | Port tunneling is the ability to tunnel from your internet point for presence back to SDF[-EU] servers and use the SDF[-EU] servers like a [[http:// | + | Port tunneling is the ability to tunnel from your internet point for presence back to SDF[-EU] servers and use the SDF[-EU] servers like a [[http:// |
=== What tools are needed === | === What tools are needed === | ||
Line 131: | Line 128: | ||
ssh -D 1080 -p 465 username@odin.sdf-eu.org | ssh -D 1080 -p 465 username@odin.sdf-eu.org | ||
- | Alternatively, | ||
- | All the details for using this program are documented on its webpage at https:// | ||
=== How to set up PuTTY === | === How to set up PuTTY === | ||
Line 147: | Line 142: | ||
Then go back to session and name and save the session. Click connect and the tunnel should become active. | Then go back to session and name and save the session. Click connect and the tunnel should become active. | ||
- | Finally, configure your browser to use the SOCKS proxy on " | + | Finally, configure your browser to use the SOCKS proxy on " |
=== How to use the Tunnel you just enabled === | === How to use the Tunnel you just enabled === | ||
Line 178: | Line 173: | ||
* Port number to connect to (default is 1080) | * Port number to connect to (default is 1080) | ||
* Your username and password | * Your username and password | ||
+ | |||
+ | === Commandline === | ||
+ | |||
+ | To connect to a socks proxy on the commandline, | ||
+ | All the details for using this program are documented on its webpage at https:// | ||
=== SSH(C) – SSH Communications Security Corp === | === SSH(C) – SSH Communications Security Corp === | ||
Line 198: | Line 198: | ||
{{ tutorials: | {{ tutorials: | ||
- Connect as normal! (You may want to save these details for future use) | - Connect as normal! (You may want to save these details for future use) | ||
+ | |||