Difference between revisions of "Ssh-keygen (command)"

From wikieduonline
Jump to navigation Jump to search
Tags: Mobile web edit, Mobile edit
Line 7: Line 7:
  
 
==Activities==
 
==Activities==
# Generate a public private key using ed25519 key format using the following command: <code>ssh-keygen -t ed25519</code>
+
# Generate a public private key using ed25519 key format using the following command: :<code>ssh-keygen -t ed25519</code>
 
# Solve" "WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!" warning:  
 
# Solve" "WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!" warning:  
 
::<code>ssh-keygen -R SERVER_NAME</code> -R Removes all keys belonging to hostname from a known_hosts file
 
::<code>ssh-keygen -R SERVER_NAME</code> -R Removes all keys belonging to hostname from a known_hosts file

Revision as of 07:20, 28 March 2020

ssh-keygen[1] is an OpenSSH software command used to generate, manage, and convert authentication keys. It support at least four different key types RSA, DSA, ECDSA and ed25519.

Commands

  • ssh-keygen -l -f /etc/ssh/ssh_host_XXXXkey.pub
  • ssh-keygen -vF host (-v flag added in OpenSSH 8.1[2])
  • ssh-keygen -t ed25519 (There is no need to set the key size, as all Ed25519 keys are 256 bits) other options: [-t dsa | ecdsa | ed25519 | rsa]

Activities

  1. Generate a public private key using ed25519 key format using the following command: :ssh-keygen -t ed25519
  2. Solve" "WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!" warning:
ssh-keygen -R SERVER_NAME -R Removes all keys belonging to hostname from a known_hosts file
ssh -oStrictHostKeyChecking=no SERVER_NAME Temporarily turning off host key checking

Both solutions have security implications.

  1. Understand different key types: dsa, ecdsa, ed25519 and rsa

Related commands: ssh-copy-id

See also

  • http://man7.org/linux/man-pages/man1/ssh-keygen.1.html
  • https://www.openssh.com/txt/release-8.1
    • Retrieved from "https://www.wikieduonline.com/index.php?title=Ssh-keygen_(command)&oldid=16269"

    Advertising: