Basics
Create a new SSH Key
ssh-keygen -t rsa -C "your-email-address"
Be careful that you don't over-write your existing key for your personal account. Instead, when prompted, save the file as id_rsa_key. In my case, I've saved the file to ~/.ssh/id_rsa_other_key
SSH config
Taken From here
Add aliases
edit ~/.ssh/config and put this contents of $HOME/.ssh/config
Host dev
HostName dev.example.com
Port 22000
User fooey
With this setup, simply
ssh dev
and the rest will go fine
Aliases with redirection and more
Instead of
ssh -f -N -L 9906:127.0.0.1:3306 coolio@database.example.com
you can add an entry to
~/.ssh/config
as the following one:
Host tunnel
HostName database.example.com
IdentityFile ~/.ssh/path_to_PRIVATE_key
LocalForward 9906 127.0.0.1:3306
User coolio
And just
ssh -f -N tunnel
Which will make it easier to manage
Check key fingerprint
SHA-256
ssh-keygen -lf ~/.ssh/id_rsa.pub
1024 SHA256:19n6fkdz0qqmowiBy6XEaA87EuG/jgWUr44ZSBhJl6Y (DSA)
MD5
ssh-keygen -E md5 -lf ~/.ssh/id_rsa.pub
2048 MD5:4d:5b:97:19:8c:fe:06:f0:29:e7:f5:96:77:cb:3c:71 (DSA)
Passwordless login to machine via SSH
Use
ssh-copy-id -i ~/.ssh/id_rsa.pub some_user@some_host -p 22
or these steps:
ssh-keygen -t rsa (Optional)
ssh b@B mkdir -p ~/.ssh
cat ~/.ssh/id_rsa.pub | ssh b@B 'cat >> ~/.ssh/authorized_keys'
ssh b@B(should not ask for pw anymore)
where B is the host and b is the user
Execute graphical command in remote computer
ssh user@host "DISPLAY=:0 nohup vlc /path/to/media/movie.mp4"
Disable SSH password authentication
edit /etc/ssh/sshd_config
with contents
ChallengeResponseAuthentication no
PasswordAuthentication no
UsePAM no
Restart daemon
# /etc/init.d/sshd restart
Add private key
ssh-add public_key_folder/public_key_file
Identity added: public_key_folder/public_key_file (public_key_folder/public_key_file)