Mark,
I have the exact same setup you are describing in setting up SHADOW. I got
around ssh asking for a passwd by just having a blank phase phrase. When
you generate your public/private keys for your user, just hit 'enter' twice
when it asks for the pass phrase. This will then allow unattended scp of
the tcpdump files.
-Robert
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> Behalf Of Mark
> E. Drummond
> Sent: Tuesday, May 02, 2000 12:57 PM
> To: [EMAIL PROTECTED]
> Subject: .rhosts failing?
>
>
> I have been using ssh for a long while now, but have
> never had to use
> .rhosts with it. Now I am trying to set up a SHADOW
> sensor & analysis
> station. This requires that a user on the analysis
> station be able to
> ssh over to the sensor without a password for unattended
> pulling of the
> tcpdump logs.
>
> I have added hostbased authentication to the sesnor's
> config file and
> set up tcp wrappers to allow the analysis station
> access. I added the
> analysis station to the sensor's .rhosts (and .shosts
> FWIW). I put the
> public key file of the analysis station user over in
> root's ~/.ssh2 on
> the sensor and created the authorizations file. Also
> generated a key
> pair for root on the sensor.
>
> But I must still be missing something because it still
> asks me to enter
> the root password. This is on ssh 2.0.13.
>
> --
> Mark Drummond|ICQ#19153754|mailto:[EMAIL PROTECTED]
> UNIX System Administrator|Royal Military College of Canada
> The Kingston Linux Users Group|http://signals.rmc.ca/klug/
> Saving the World ... One CPU at a Time
>
> Please excuse me if I am terse. I answer dozens of
> emails every day.
>
