Chris,
The keys for the 2 systems differ. OpenSSH uses the old method of key
storage while SSH uses a new PGP-style method. I think they call this the
"SECSH public key file format' in the OpenSSH ssh-keygen man page (man 1
ssh-keygen).
Within the OpenSSH keygen manpage, they show the -i option for converting
the old style SSH keys to SECSH style for compatibility with SSH
communications' server:
-i This option will read an unencrypted private (or public) key file
in SSH2-compatible format and print an OpenSSH compatible private
(or public) key to stdout. ssh-keygen also reads the `SECSH'
Public Key File Format . This option allows importing keys from
several commercial SSH implementations.
To paraphrase, this will convert an SSH2 public key into an OpenSSH
compatible private key.
# ssh -i -f keyfile.pub
Likewise, FYI, the -e option does the reverse.
| -----Original Message-----
| From: Christophe Dupre [mailto:[EMAIL PROTECTED]]
| Sent: Thursday, August 16, 2001 12:29 PM
| To: Carl J. Nobile
| Cc: [EMAIL PROTECTED]
| Subject: RE: Interop issue between openssh and ssh.com
|
|
|
| Hi Carl,
| The SSH.COM version 2.2 supports only the 2.0 protocol, and we've
| configured openssh to use that version exclusively. But, how
| do I transfer
| a public key made with openssh's ssh-keygen tool and have
| ssh.com' sshd
| recognized it ?
|
| On Thu, 16 Aug 2001, Carl J. Nobile wrote:
|
| > Hi Christophe,
| >
| > There are two protocols for ssh, the 1.5 and the 2.0
| protocols. You HAVE
| > to use the same protocol version on both ends. The 1.5
| protocol is the
| > old one. If that's what you are using then upgrade. It is
| possable to run
| > both on the same machine concurrently, but be aware that
| the 1.5 protocol
| > is not as secure as the 2.0 protocol.
| >
| > Carl
| >
| > On 16-Aug-01 Christophe Dupre wrote:
| > >
| > > Hi,
| > > we are using openssh at our site, but one of my user need
| to use RSA
| > > authentication to connect to another site, where they use
| ssh.com 2.2.
| > > Since the key file format are different, how are we supposed to
| > > exchange
| > > the public keys ?
| > >
| > > --
| > > ---
| > > Christophe Dupre
| > >
| > > "When all else fails, so will your computer" - Murphy
| > >
| > > -----BEGIN GEEK CODE BLOCK-----
| > > Version: 3.12
| > > GCS d- s:++ a-- C++ ULS++++$ UI++ UH++>++++ P++ L+++ !E W N+ o? K
| > > w++>--
| > > O M+ V-- PS+ PE+ Y+ PGP+ t+ 5+ X+ R tv+ b++ DI+ D+ G+ e++
| h--- r++ z+
| > > ------END GEEK CODE BLOCK------
| >
| >
| --------------------------------------------------------------
| ----------
| > E-Mail: Carl J. Nobile <[EMAIL PROTECTED]>
| > Date: 16-Aug-01 Phone:
| 315-453-2912 Ex. 5336
| > Time: 11:45:52 Fax: 315-479-0859
| >
| > Software Engineering Group -- AppliedTheory Corp.
| > 224 Harrison Street, 6th Floor, Syracuse, NY 13202
| >
| --------------------------------------------------------------
| ----------
| >
|
| --
| ---
| Christophe Dupre
|
| "When all else fails, so will your computer" - Murphy
|
| -----BEGIN GEEK CODE BLOCK-----
| Version: 3.12
| GCS d- s:++ a-- C++ ULS++++$ UI++ UH++>++++ P++ L+++ !E W N+
| o? K w++>--
| O M+ V-- PS+ PE+ Y+ PGP+ t+ 5+ X+ R tv+ b++ DI+ D+ G+ e++ h--- r++ z+
| ------END GEEK CODE BLOCK------
|