3. Are these bad instructions for setting up SSH keys to access a CPanel controlled...

Are these bad instructions for setting up SSH keys to access a CPanel controlled website?

You definitely don't want your private key on another box.

I'm surprised they even use that method, given the off chance of a copy/paste fubar by noobs, like me.

With this method there is no chance of getting your private key in your clipboard.

Step One—Create the RSA Key Pair

The first step is to create the key pair on the client machine (there is a good chance that this will just be your computer):

ssh-keygen -t rsa

Step Two—Store the Keys and Passphrase

Once you have entered the Gen Key command, you will get a few more questions:

Enter file in which to save the key (/home/demo/.ssh/id_rsa):

You can press enter here, saving the file to the user home (in this case, my example user is called demo).

Enter passphrase (empty for no passphrase):

It's up to you whether you want to use a passphrase. Entering a passphrase does have its benefits: the security of a key, no matter how encrypted, still depends on the fact that it is not visible to anyone else. Should a passphrase-protected private key fall into an unauthorized users possession, they will be unable to log in to its associated accounts until they figure out the passphrase, buying the hacked user some extra time. The only downside, of course, to having a passphrase, is then having to type it in each time you use the Key Pair.

The entire key generation process looks like this:

ssh-keygen -t rsa Generating public/private rsa key pair. Enter file in which to save the key (/home/demo/.ssh/id_rsa): Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /home/demo/.ssh/id_rsa. Your public key has been saved in /home/demo/.ssh/id_rsa.pub. The key fingerprint is: 4a:dd:0a:c6:35:4e:3f:ed:27:38:8c:74:44:4d:93:67 demo@a The key's randomart image is: +--[ RSA 2048]----+ | .oo. | | . o.E | | + . o | | . = = . | | = S = . | | o + = + | | . o + o . | | . o | | | +-----------------+

The public key is now located in /home/demo/.ssh/id_rsa.pub The private key (identification) is now located in /home/demo/.ssh/id_rsa Step Three—Copy the Public Key

Once the key pair is generated, it's time to place the public key on the virtual server that we want to use.

You can copy the public key into the new machine's authorized_keys file with the ssh-copy-id command. Make sure to replace the example username and IP address below.

ssh-copy-id [email protected]

/r/linuxquestions Thread
Previous
Next

Recently removed from /r/linuxquestions

NVIDIA K2100M - X.org gives me better performance then NVIDIA drivers but it glitches Using rootfs of Ubuntu/Debian with arbitrary kernels (on same arch) PC stuck in dark mode How to set the right screen resolution without xrandr How to transition from Windows to Linux painlessly? Best Debian based Distro fro Old Laptops Thinking of going from Windows > Arch. Questions about VMs, AUR/other repos and VFIO. What are the top 5 linux NO NOs you have learned over the years of using linux? How would your workflow break by switching to macOS? Is there a foundation for Linux power users? Run command once a day, but only when internet connection is available. Why is Ubuntu a pain in my case? For software that is not supported in linux, is it better to run it on a vm with MacOS or with windows 10/11? Hello! I need help with manjaro! boot,audio problems!new user :< Is vim worth it?

More Random Comments

His Dark Materials on HBO Max Is it a bad idea to ask out a woman I met at a professional meetup? Never enough What Made You Instantly Dump Your Boyfriend/Girlfriend? TIL that The Specials singer Terry Hall was abducted by a paedophile ring in France when he was 12 years old *sigh* what are your grow-up confessions? Today I realized that Christmas car commercials are not aimed at me people who were about to commit suicide,what changed your mind? No touching in the City of Love Thoughts on piratefolk sub? I observe TAURUS Sun Back to their EX Often Kek günüm gelmiş. Bana da bir modluk nasip olur artık. This entire thread is a case study in people refusing to take a step back No Christmas gifts from husband Život u manjim gradovima u Srbiji