::-----Original Message----- ::From: Andy Eager [mailto:[EMAIL PROTECTED]] :: ::Can ssh be configured not to ask for a password ? (I know this is unusual).
I setup ssh not to ask for a passwd for an astronomy application which accessed a remote tape drive within the astornomy application shell (ie ssh asking for a passwd would've tripped the app up). The way I did it was this (sorry this is the guide I wrote for the users so please apply it to your specific situation :): 1. If you have not already generated a user keypair, please see the Key Generation FAQ. ssh-keygen2 This takes a while and at the end you will be prompted for a pass phrase which must be more than 20 characters long and may contain whitespaces. This will create two files id_dsa_1024_a which is your private key and id_dsa_1024_a.pub which is your public key. 2. In your ~/.ssh2 directory on the client, create an 'identification' file that contains the following: idkey id_dsa_1024_a or whatever your private key's filename is. Note that if you are using linux you will e using Open ssh (type ssh -V) to find out whch ssh you are using. If it says Open SSh you need to comvert your public key to a secsh-compliant public key on the client machine: ssh-keygen -e -f id_dsa.pub > id_dsa_ssh2.pub 4. Copy the public key portion of your user keypair (id_dsa_1024_a.pub) to bat, to your ~/.ssh2 directory. scp id_dsa_1024_a.pub melinda@bat:/home/melinda/.ssh2/ You will be prompted for your passwd. 5. Create a file on bat in your ~/.ssh2 directory named 'authorization'. The file should contain the following: key id_dsa_1024_a.pub Substitute your public key filename for 'id_dsa_1024_a.pub' if different. You will now be prompted for your passphrase to login not your passwd. However if you would like to login without entering your passphrase do the following: 1. To start ssh-agent2, give one of the following commands: $ exec ssh-agent2 $SHELL 2. Next, you need to add identities with the ssh-add2 command: $ ssh-add2 /path/to/and_private_key_file_name ssh-add2 /home/$USER/.ssh2/id_dsa_1024_a You will be prompted for the passphrase of your key. Once this is entered, your identity has been added and no further actions are necessary. You can now authenticate to servers which use that keypair for authentication without retyping your passphrase. ssh bat mt -f /dev/rmt/0l status ssh bat tar -xvf /dev/rmt/0l kernel or "ssh machine shutdown" in your case :) Hope that helps :) melinda -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
