AWS EC2 shows the SSH2 fingerprint, not the OpenSSH fingerprint everyone expects. It doesn’t say this in the UI. It also shows two completely different kinds of fingerprints depending on whether the key was generated on AWS and downloaded, or whether you uploaded your own public key. Fingerprints generated with ssh-keygen -l -f id_rsa will … Read more
Edit for 2016: This Q&A predates the systemd v230 debacle. As of systemd v230, the new default is to kill all children of a terminating login session, regardless of what historically valid precautions were taken to prevent this. The behavior can be changed by setting KillUserProcesses=no in /etc/systemd/logind.conf, or circumvented using the systemd-specific mechanisms for … Read more
OpenSSH versions 4.4p1 and up (which should include the latest version with CentOS 5) have SFTP logging capability built in – you just need to configure it. Find this in your sshd_config (in centos, file /etc/ssh/sshd_config): Subsystem sftp /usr/libexec/openssh/sftp-server and change it to: Subsystem sftp /usr/libexec/openssh/sftp-server -l INFO INFO is just one level of detail … Read more
Are you sure that root login to ssh is allowed? Check sshd_config and verify that root login is permitted. sshd will need to be restarted if the setting changes.
RSA is generally preferred (now that the patent issue is over with) because it can go up to 4096 bits, where DSA has to be exactly 1024 bits (in the opinion of ssh-keygen). 2048 bits is ssh-keygen‘s default length for RSA keys, and I don’t see any particular reason to use shorter ones. (The minimum … Read more
Unfortunately this in now a very common occurrence. It is an automated attack on SSH which is using ‘common’ usernames to try and break into your system. The message means exactly what it says, it does not mean that you have been hacked, just that someone tried.
None of the posted solutions worked for me. My client (desktop) system is running macOS 10.12.5 (Sierra). I added -v to the options for the ssh command and it told me, debug1: No xauth program. which means it doesn’t have a correct path to the xauth program. (On this version of macOS the path to … Read more
I’ve been using FreeSSHd on my home Windows box, and have not run into any limitations. Highly recommended.
Check the contents of key_name, if the agent says invalid format, then there’s something wrong with the key – like .. are you sure that’s the correct key? Even if it’s not the private key you need, the ssh agent won’t return invalid format if the key is working, you simply won’t be able to … Read more
cd is a shell builtin. LocalCommand is executed as: /bin/sh -c <localcommand> What you’re looking to do can’t really be accomplished via SSH; you need to modify the shell in some way, e.g. via bashrc/bash_profile. <Editing almost a decade later…> LocalCommand isn’t what you want, anyway. That’s run on your machine. You want RemoteCommand. Something … Read more