On the system you want to login from, cd to ~/.ssh and type this command. When prompted press enter leaving the password blank:
ssh-keygen -t dsa
Copy the public key to the server and home directory for the user you want access to, in your case root:
scp .ssh/id_dsa.pub [EMAIL PROTECTED]:/root/.ssh/authorized_keys2
ssh to the server, using ssh -l root servername
Every user that needs passwordless access will have to go through this process, and you'll need to append their keys to the authorized_keys2 file. For a lot of users this could become intensive but for a few its not bad.
Dalin
Aaron Seigo wrote:
On October 4, 2004 19:43, Nick W wrote:
I have a server box to which I want root access from my local subnet (ie 192.168.1.*) but from external nets I only want normal users to be able to log on. I want to accomplish this without logging in as me then using su. Is that possible?
AFAIK you can do PermitRootLogin=without-password to get pubkey auth for root while keeping normal password auth for your users. of course, you can still log in remotely if you have the credentials, but it's at least safer than a password login.
_______________________________________________ clug-talk mailing list [EMAIL PROTECTED] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
