Permissions for establishing a trust relationship using ssh
Source: Internet
Author: User
For more information about how to establish a trust relationship through ssh, see permissions. Assume that there are two machines A and B, and the trust relationship between A and B is established (here, A trusts B): 1. log on to the $ HOME directory of B and run the following command: cd. sshssh-keygen-tdsa (for message 1... for more information about how to establish a trust relationship through ssh, see permissions. Assume that there are two machines A and B, and the trust relationship between A and B is established (here, A trusts B): 1. log on to the $ HOME directory of B and run the following command: cd. sshssh-keygen-t dsa (press enter for prompt information) 2. copy the generated id_dsa.pub content to $ HOME /. in SSH/authorized_keys. If $ HOME/. SSH/authorized_keys does not exist on machine A, create A new file and add the copied content to the file. If yes, append the copied content to the file. Generally, after the trust relationship is established according to the above method, you do not need to enter A password when logging on to machine A through ssh from Machine B, and the trust relationship is successfully established. However, if you are still prompted to lose the password, the permission may be due to the directory and file permissions on machine. Check by referring to the following configuration. if the configuration does not match, you can: directory/file permission work (assuming $ HOME =/home/work/) drwx -- x. ssh drwx ------ authorized_keys-rw-r -- Note: you cannot have more permissions on the preceding directories/files )! I have encountered this problem because the work directory permission is drwxr -- x, which causes the password to be prompted during ssh logon after the trust relationship is established. I think this is also out of the consideration of system security.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.