How to Set Up and Use SSH

Goals of SSH Configuration and Use

The following flowchart shows the steps involved in making a trustworthy yet still convenient SSH connection.

User logs in on a client desktop system and an SSH agent is started.
          ↓
User types SSH key passphrase and enables single-sign-on.
          ↓
User requests a connection to a remote SSH server.
          ↓
Client and server hosts authenticate to each other. They have been configured to do this in a trustworthy way, rather than asking the user an impossible-to-answer question about server SSH keys to which the user will simply answer "yes".
          ↓
Client and server hosts negotiate a cipher and session key
          ↓
The user is connected using cryptographic authentication. There is no need to type the password on the remote server.

The remote server can apply access control rules when the connection is first requested, and also during the attempted authentication request.

All this is easy to set up if done according to a well organized plan. Start with Step 1 below to see how to configure and use SSH securely:

My page on hardening default installations of Linux and BSD

My general security page

Click here to inquire about advertising on this or any page on this site.
Home Unix/Linux Networking Infosec Travel Technical Radio Site Map Contact
Use /bin/vi! Manipulate images with ImageMagick! Hosted on OpenBSD
Hosted on Apache This site is viewable with any browser Valid XHTML 1.1! Valid CSS!
© Bob Cromwell Sep 2010. Created with /bin/vi and ImageMagick, hosted on OpenBSD with Apache.    Root password available here, privacy policy here.