HOWTO: Passwordless ssh logins
Having the ability to do passwordless ssh logins helps in so many ways when automating tasks via scripts in Unix/Linux/BSD. Thankfully the great OpenSSH can take care of that for you, allowing you to do ssh, scp, sftp from and to multiple hosts. I always have to look up how to do it, so this time I found a good, consise way, and am setting it here for reference. For more detailed instructions check out the page this is taken from, otherwise fire up yr term and do it, “…for great justice!”
UPDATE2: Recently, while building a proof of concept computer cluster, I came across a much simpler way to do this. If you have ssh-keygen and ssh-copy-id installed, it’s a two step process.
First, create a password-less ssh rsa key:
ssh-keygen -b 2048 -f ~/.ssh/id_rsa -P ''
Second, copy the key to your remote host:
ssh-copy-id user@remote.host
And that’s it, easy cheesy. Might as well test it to make sure it worked:
ssh user@remote.host
It should drop you to a prompt on the remote box without asking for a password.
UPDATE: Apparently this has changed slightly, instead of writing to autorized_keys, you should use authorized_keys2 so any updates to the core OpenSSH won’t mess up your ‘local’ keyfile (verus the system one). Here are the correct (and more complete) directions:
ssh-keygen -t rsa (Enter)
You shouldn’t have a key stored there yet, but if you do it will prompt you now; make sure you overwrite it.
Enter passphrase (empty for no passphrase): (Enter)
Enter same passphrase again: (Enter)
We’re not using passphrases so logins can be automated, this should only be done for scripts or applications that need this functionality, it’s not for logging into servers lazily!
Now, replace REMOTE_SERVER with the hostname or IP that you’re going to call when you SSH to it, and copy the key over to the server:
cat ~/.ssh/id_rsa.pub | ssh REMOTE_SERVER 'cat - >> ~/.ssh/authorized_keys2'
Set the permissions to a sane level:
ssh REMOTE_SERVER 'chmod 700 .ssh'
Lastly, give it a go to see if it worked:
ssh REMOTE_SERVER
ssh-keygen -t rsa
cat ~/.ssh/id_rsa.pub | ssh REMOTE_SERVER 'cat - >> ~/.ssh/authorized_keys'
ssh REMOTE_SERVER 'chmod 700 .ssh'
ssh REMOTE_SERVER
Related posts
- Timo
- fak3r
Welcome
Hi, I'm fak3r and I've been online for over 15 years, blogging for 10. I work with open source software, various hardware and whatever else that I can hack on. I enjoy learning by doing, painting infrequently and listening to more music than the law allows. Feel free to follow me and comment on my thoughts and ideas; we're all in it together kid.Subscribe or follow along
Tag cloud
Supported by
We like
We support
Recent Comments
- How to build your own DropBox personal clone | Ask Superuser on HOWTO build your own open source Dropbox clone
- fak3r on HOWTO: fix a G3 iBook with a “bad logic board” for 26 cents
- dan on HOWTO: fix a G3 iBook with a “bad logic board” for 26 cents
- Ollie Treend on HOWTO build your own open source Dropbox clone
- gachies on HOWTO: Mezzo desktop on Ubuntu
