38. ssh -v york
OpenSSH_6.0p1 Debian-4+deb7u2, OpenSSL 1.0.1e 11 Feb 2013
debug1: Reading configuration data /home/bill/.ssh/config
debug1: /home/bill/.ssh/config line 19: Applying options for *
debug1: /home/bill/.ssh/config line 363: Applying options for york
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to york.ja.net [123.45.67.89] port 22.
debug1: Connection established.
42. ssh-keygen -f yorkkey
Generating public/private rsa key pair.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in yorkkey.
Your public key has been saved in yorkkey.pub.
The key fingerprint is:
d6:63:83:d3:c1:ba:cc:17:9a:e6:04:cf:1f:c1:30:cf bill@brighton
The key's randomart image is:
+--[ RSA 2048]----+
| |
| . |
| o o |
| @ . |
| . S E |
| B * = |
| @ o |
| + o . |
| . . |
+-----------------+
105. Match User nagios
PasswordAuthentication no
RSAAuthentication yes
PubkeyAuthentication yes
Banner none
(Banner may break some automated logins)
... is your shell clean
119. ben@brighton:~$ ssh -v york
OpenSSH_6.xxx Debian-4+deb7u2, OpenSSL 1.2.3 12 Feb 1804
debug1: Reading configuration data /home/ben/.ssh/config
debug1: /home/ben/.ssh/config line 12: Applying options for *
debug1: /home/ben/.ssh/config line 456: Applying options for york
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to york.domain.net [123.456.78.9] port 22.
debug1: Connection established.
debug1: identity file /home/ben/.ssh/yorkkey type 1
debug1: Checking blacklist file /usr/share/ssh/blacklist.RSA-2048
debug1: Checking blacklist file /etc/ssh/blacklist.RSA-2048
debug1: identity file /home/ben/.ssh/yorkkey-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.0p1 Debian-4+deb7u2
debug1: match: OpenSSH_6.0p1 Debian-4+deb7u2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: RSA 12:34:56:78:12:34:56:78:90:12:34:56:78:90
debug1: Host 'york.domain.net' is known and matches the RSA host key.
debug1: Found key in /home/ben/.ssh/known_hosts:123
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
====================================
This is a private system
Unauthorised access is prohibited!
All access attempts are logged
====================================
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/ben/.ssh/yorkkey
debug1: Server accepts key: pkalg ssh-rsa blen 279
debug1: Authentication succeeded (publickey).
Authenticated to york.domain.net ([123.456.78.9]:22).
debug1: channel 0: new [client-session]
debug1: Requesting no-more-sessions@openssh.com
debug1: Entering interactive session.
debug1: Requesting authentication agent forwarding.
debug1: Sending environment.
debug1: Sending env LANG = en_GB.UTF-8
Linux york 3.2.0-4-amd64 #1 SMP Debian 3.2.54-2 x86_64
Welcome to york.domain.net
You have mail.
Last login: Fri Feb 6 14:24:43 2015 from brighton.domain.net
ben@york:~$