thank you for the kind words :) SSH is quite secure out-of-the-box, if you use ssh private and public keys and disable password auth. There are some things that are interesting in terms of auditing, compliance and 2FA, I will make a video about this in a few weeks, currently doing some research on that, so stay tuned! :)
A connecting client needs the private key right? How do you keep the priv key safe? Before you know you have your private key stored on multiple machines which would make strong password perhaps safer.
Generally you wouldn’t make copies of the same key, you’d keep it in some location that only you can access, like an encrypted drive. It’s best practice to audit ssh keys and create new ones.
Is it possible to create one set of ssh keys and then use those same ssh keys for the same domain account on all computers? so essentially, it would use the same key pair no matter what computer I log into as long as I use the same domain account? I was just pondering creating like a "Roaming Domain SSH Profile Account", where I can log in from any computer and use the same ssh key pair. It would be like assigning that key pair to that domain account so the user could get in from all computers in the domain using the same key pair. Possible?
Not sure if you're still monitoring this video, but I had a question about something. But first, thank you for your videos. You have helped me to finally comprehend something numerous times. When I created a key pair for one set of devices (Ubuntu client, Raspbian Host) I am able to connect without being prompted for a passphrase even though I included one in the setup. But when I tried to do the same thing with my Android as the client through Termux to the same Pi, I am being prompted for a passphrase. Any idea why?
hi, i followed the steps, yet i still have to enter my ubuntu-server user password to log on using ssh, any clue what else i have to do ? for exampe, enable port-22 or other steps ? i am trying to log on locally (not remote ssh)
Hi, I am new in the hole homelab project, i've done everything the way you explained and presented to us. But the section with "Authenticate with private and public keys" isn't working the way it should. I've watched it twice and checked where my mistake could be but i cant find anything not similar with yours. I have to write passwords anyway although having the right keys in the right files. Do you or anybody have any ideas what to do to fix my problem? btw love your content... you're helping lot more then you might know :)
Take a look in the ´sshd_config´ wherever it might be located on your system. I had to allow ´PermitRootLogin yes´ to login via root and additionally: ´PubkeyAuthentication yes´ ´PasswordAuthentication no´ Then restart the ssh service service ssh restart or systemctl restart ssh I am in the progress of setting up Ansible and used ´ssh-copy-id -i´ command instead of plain scp. Just make sure you have access to your system via some other method than SSH aswell. I installed both Dropbear and OpenSSH (different ports) just in case I lock myself out while setting this up.
@@ixutiini5793 thank u very much for the solution. but after long research overnight and multiple tries i found out that the PubkeyAuthentification yes was commented out and my ssh agend had no keys, so i simply uncommented PubkeyAuthentification in the sshd_config and added the key to the ssh agend with the command: ssh-add ~/.ssh/filenameRSA_key. Now its working fine and i can have fun again :D
Yes I used rainmeter on this video. You'll fine the theme in my github dotfiles but in 2 weeks I'll release a new video about my new Windows Development Setup, you might take a look :)
please make tutorial about how to configuration ubunto network for example i have vmware machine on OVH and i installed ubunto but desktop to config network with failover ip i want know how to do it from terminal :D or if you can tell me where to check the network configuration file now to know how it done :D
Why all videos show how to connect to a linux machine from a windows machine? I want to connect from a real linux machine to another real linux machine (no virtualization used), both are connected using wifi to the same router provided by the ISP