mirror of https://github.com/macssh/macssh.git
added export key howto
This commit is contained in:
chombier
parent
67d72c607d
commit
b08db97ed0
|
|
@ -8,20 +8,20 @@
|
|||
|
||||
<body bgcolor="#ffffff">
|
||||
<p></p>
|
||||
<p>
|
||||
<a href="#CONFIG"><b>How do I configure SSH2 in MacSSH ?</b></a><br>
|
||||
<a href="#CVS"><b>How do I setup CVS in MacSSH ?</b></a><br>
|
||||
<a href="#ZLIB"><b>The connection fails with message "do_zlib: inflate() failed: unknown compression method"</b></a><br>
|
||||
<a href="#NOMSG"><b>The connection dies without any error message</b></a><br>
|
||||
<a href="#EINVAL"><b>When I open a second forwarded session on the same local port, MacSSH displays "lsh: Invalid argument, (errno = 22)"</b></a><br>
|
||||
<a href="#SLOW"><b>It is sloooow, can't you do anything to make it faster ?</b></a><br>
|
||||
<a href="#BOLDBLACK"><b>I've changed the Terminal colors to white on black, but the bold text is still displayed in black.</b></a><br>
|
||||
<a href="#KEYPAIRS"><b>How can I use different key-pairs for different hosts ?</b></a><br>
|
||||
<a href="#FWDMANY"><b>I need to forward many different ports from the same SSH2 server. Is there an easier way than using many favorites ?</b></a><br>
|
||||
<a href="#FWDX11"><b>How do I forward X11 sessions with MacSSH ?</b></a><br>
|
||||
<a href="#SSH1"><b>Will you add SSH1 support ?</b></a><br>
|
||||
<a href="#SFTP"><b>Will you add SFTP (SCP) support ?</b></a><br>
|
||||
<a href="#SOURCES"><b>Where can I get the sources of MacSSH ?</b></a><br>
|
||||
<p>- <a href="#CONFIG"><b>How do I configure SSH2 in MacSSH ?</b></a><br>
|
||||
- <a href="#PUBK"><b>How do I use my Public Key with OpenSSH ?</b></a><br>
|
||||
- <a href="#CVS"><b>How do I setup CVS in MacSSH ?</b></a><br>
|
||||
- <a href="#ZLIB"><b>The connection fails with message "do_zlib: inflate() failed: unknown compression method"</b></a><br>
|
||||
- <a href="#NOMSG"><b>The connection dies without any error message</b></a><br>
|
||||
- <a href="#EINVAL"><b>When I open a second forwarded session on the same local port, MacSSH displays "lsh: Invalid argument, (errno = 22)"</b></a><br>
|
||||
- <a href="#SLOW"><b>It is sloooow, can't you do anything to make it faster ?</b></a><br>
|
||||
- <a href="#BOLDBLACK"><b>I've changed the Terminal colors to white on black, but the bold text is still displayed in black.</b></a><br>
|
||||
- <a href="#KEYPAIRS"><b>How can I use different key-pairs for different hosts ?</b></a><br>
|
||||
- <a href="#FWDMANY"><b>I need to forward many different ports from the same SSH2 server. Is there an easier way than using many favorites ?</b></a><br>
|
||||
- <a href="#FWDX11"><b>How do I forward X11 sessions with MacSSH ?</b></a><br>
|
||||
- <a href="#SSH1"><b>Will you add SSH1 support ?</b></a><br>
|
||||
- <a href="#SFTP"><b>Will you add SFTP (SCP) support ?</b></a><br>
|
||||
- <a href="#SOURCES"><b>Where can I get the sources of MacSSH ?</b></a><br>
|
||||
</p>
|
||||
<p></p>
|
||||
<p></p>
|
||||
|
|
@ -29,24 +29,32 @@
|
|||
<b>How do I configure SSH2 in MacSSH ?</b></p>
|
||||
<p>I did not write (yet?) any manual for this software, but here's some help (you can also find some more help from The Ohio State University server, at this location: <a href="http://www.math.ohio-state.edu/support/ssh/mac/macssh/">Using MacSSH</a>)</p>
|
||||
<p>- key pair:<br>
|
||||
<br>To create your key pair, go to the Favorites settings (Menu "Favorites", option "Edit Favorites…"), click on "Change", and in the SSH2 tab, click "Initialize SSH". This is to be done only once for all SSH2 connections, and creates a couple of files named "identity" and "identity.pub" in MacSSH Prefs folder in MacOS Preferences folder.<br>
|
||||
identity is your private key file. don't give it to anyone.<br>identity.pub is the corresponding public key, which you give to SSH2 admins whose servers require a public key to accept connections.<br>
|
||||
<br>
|
||||
To create your key pair, go to the Favorites settings (Menu "Favorites", option "Edit Favorites…"), click on "Change", and in the SSH2 tab, click "Initialize SSH". This is to be done only once for all SSH2 connections, and creates a couple of files named "identity" and "identity.pub" in MacSSH Prefs folder in MacOS Preferences folder.<br>
|
||||
identity is your private key file. don't give it to anyone.<br>
|
||||
identity.pub is the corresponding public key, which you give to SSH2 admins whose servers require a public key to accept connections.<br>
|
||||
If you intend to connect to OpenSSH/SSH2 servers using public key userauth, you will have to convert your public key to OpenSSH/SSH2 format by clicking on "Export public key…" and send the resulting file to the admin.<br>
|
||||
</p>
|
||||
<p>
|
||||
- Client configuration:<br>
|
||||
<br>In the Favorites settings, tab SSH2, select the Encryption, Authentication and Compression methods to use, and, for a first connection to a host, leave the "Never trust unknown host key" unchecked. this will let MacSSH accept new keys from the SSH2 host you connect to. In the Favorites settings, tab Security, Select the Protocol ssh2 (Secure Shell), and enter your login (mandatory). You can leave the password blank if you don't want to save it in MacSSH preferences, it will be asked later. You should now be able to connect to the host.<br>
|
||||
<p>- Client configuration:<br>
|
||||
<br>
|
||||
In the Favorites settings, tab SSH2, select the Encryption, Authentication and Compression methods to use, and, for a first connection to a host, leave the "Never trust unknown host key" unchecked. this will let MacSSH accept new keys from the SSH2 host you connect to. In the Favorites settings, tab Security, Select the Protocol ssh2 (Secure Shell), and enter your login (mandatory). You can leave the password blank if you don't want to save it in MacSSH preferences, it will be asked later. You should now be able to connect to the host.<br>
|
||||
</p>
|
||||
<p>- TCP Port Forwarding:<br>
|
||||
<br>Duplicate the Favorite you want to connect to for port forwarding (or create a new favorite from scratch configured for SSH2), and in the SSH2 tab, select either Local or Remote TCP Port forwarding as Method. Enter the Local Port number, the Remote Host Name and the Remote Port Number, where Local Port number is the port number you want to use on your Mac as listener, and (Remote Host Name, Remote Port Number), the target service you want to use. Connect this session. You should then be able to use your favorite app connected on 127.0.0.1:localport, tunnelled via MacSSH to the SSH2 server, itself connected (unencrypted, this time) to remotehost:remoteport. Note that 'remote host' is generally the same host as the SSH2 server you're connected to, or close to it. If you want to know more about this feature, I highly recommend lsh documentation from the current lsh archive /doc/lsh.html file.<br>
|
||||
<br>
|
||||
Duplicate the Favorite you want to connect to for port forwarding (or create a new favorite from scratch configured for SSH2), and in the SSH2 tab, select either Local or Remote TCP Port forwarding as Method. Enter the Local Port number, the Remote Host Name and the Remote Port Number, where Local Port number is the port number you want to use on your Mac as listener, and (Remote Host Name, Remote Port Number), the target service you want to use. Connect this session. You should then be able to use your favorite app connected on 127.0.0.1:localport, tunnelled via MacSSH to the SSH2 server, itself connected (unencrypted, this time) to remotehost:remoteport. Note that 'remote host' is generally the same host as the SSH2 server you're connected to, or close to it. If you want to know more about this feature, I highly recommend lsh documentation from the current lsh archive /doc/lsh.html file.<br>
|
||||
<br>
|
||||
More info on port forwarding with some screenshots is available at the University of Pennsylvania server at this location: <a href="http://www.sas.upenn.edu/biology/computing/instructions/security/portforwarding/">Port Forwarding on the Macintosh</a><br>
|
||||
</p>
|
||||
<p>
|
||||
- Troubleshooting:<br>
|
||||
<br> If you have problems to connect to a host, you can activate the verbose/debug/trace modes from the SSH2 tab, leave the terminal window opened, by checking the "Windows don't go away" box in the Preferences dialog, and type Cmd-' (single quote) to open the console window. The connection traces will be displayed in this window.<br>
|
||||
<p>- Troubleshooting:<br>
|
||||
<br>
|
||||
If you have problems to connect to a host, you can activate the verbose/debug/trace modes from the SSH2 tab, leave the terminal window opened, by checking the "Windows don't go away" box in the Preferences dialog, and type Cmd-' (single quote) to open the console window. The connection traces will be displayed in this window.<br>
|
||||
</p>
|
||||
<p> </p>
|
||||
<p></p>
|
||||
<p><a name="PUBK"></a><br>
|
||||
<b>How do I use my Public Key with OpenSSH ?</b></p>
|
||||
<p>Export your public key in SSH2 format. Copy this file's content on your SSH2 host in a text file, for instance 'ssh2.pub', and execute the command:<br>ssh-keygen -X -f ssh2.pub >> ~/.ssh/authorized_keys2<br>
|
||||
you're done.</p>
|
||||
<p></p>
|
||||
<p><a name="CVS"></a><br>
|
||||
<b>How do I setup CVS in MacSSH ?</b></p>
|
||||
<p>Let's say you need to access the project CVSPROJECT, on the sourceforge cvs server, as user CVSUSER, with password CVSPASS:<br>
|
||||
|
|
@ -55,12 +63,21 @@
|
|||
<br>
|
||||
Create a favorite configured with SSH2 for the CVS server you want to connect to:<br>
|
||||
<br>
|
||||
-Tab General:<br> host: cvs.CVSPROJECT.sourceforge.net<br> port: 22 (SSH default)<br>
|
||||
-Tab Security:<br> protocol: ssh2 (secure shell)<br> username: CVSUSER<br> password: CVSPASS<br> command: -N -E"cvs -d /cvsroot/CVSPROJECT server"<br>
|
||||
-Tab SSH2:<br> method: CVS port forwarding<br> local port: 514 (CVS)<br>
|
||||
-Tab General:<br>
|
||||
host: cvs.CVSPROJECT.sourceforge.net<br>
|
||||
port: 22 (SSH default)<br>
|
||||
-Tab Security:<br>
|
||||
protocol: ssh2 (secure shell)<br>
|
||||
username: CVSUSER<br>
|
||||
password: CVSPASS<br>
|
||||
command: -N -E"cvs -d /cvsroot/CVSPROJECT server"<br>
|
||||
-Tab SSH2:<br>
|
||||
method: CVS port forwarding<br>
|
||||
local port: 514 (CVS)<br>
|
||||
<br>
|
||||
2) MacCVS settings:<br>
|
||||
<br>CVSROOT: CVSUSER@127.0.0.1:/cvsroot/CVSPROJECT<br>
|
||||
<br>
|
||||
CVSROOT: CVSUSER@127.0.0.1:/cvsroot/CVSPROJECT<br>
|
||||
authentication: Rsh (".rhosts" file)<br>
|
||||
<br>
|
||||
3) Connect MacSSH to the server, then use MacCVS as usually.<br>
|
||||
|
|
@ -76,12 +93,14 @@
|
|||
<p></p>
|
||||
<p><a name="EINVAL"></a><br>
|
||||
<b>When I open a second forwarded session on the same local port, MacSSH displays "lsh: Invalid argument, (errno = 22)"</b></p>
|
||||
<p>Once a local port is forwarded, it is no longer available for any other listener on the local host.<br>But you can still open as many connections as you want from this port.</p>
|
||||
<p>Once a local port is forwarded, it is no longer available for any other listener on the local host.<br>
|
||||
But you can still open as many connections as you want from this port.</p>
|
||||
<p></p>
|
||||
<p><a name="SLOW"></a><br>
|
||||
<b>It is sloooow, can't you do anything to make it faster ?</b></p>
|
||||
<p>In the main preferences dialog, set the TimeSlice to 0.<br>
|
||||
'debug' and 'trace' logging can also slow a lot the connection, so use these options only when experiencing troubles.</p>
|
||||
'debug' and 'trace' logging can also slow a lot the connection, so use these options only when experiencing troubles.<br>
|
||||
And last, if you find the display slow, you can check 'jump scrolling' in the the terminal settings.</p>
|
||||
<p></p>
|
||||
<p><a name="BOLDBLACK"></a><br>
|
||||
<b>I've changed the Terminal colors to white on black, but the bold text is still displayed in black.</b></p>
|
||||
|
|
@ -95,7 +114,7 @@
|
|||
<p></p>
|
||||
<p><a name="FWDMANY"></a><br>
|
||||
<b>I need to forward many different ports from the same SSH2 server. Is there an easier way than using many favorites ?</b></p>
|
||||
<p>You can add several '-Llocalport:remotehost:remoteport' in the 'Command' field of the security tab <br>
|
||||
<p>You can add several '-Llocalport:remotehost:remoteport' in the 'Command' field of the security tab<br>
|
||||
</p>
|
||||
<p></p>
|
||||
<p><a name="FWDX11"></a><br>
|
||||
|
|
@ -124,7 +143,8 @@
|
|||
with <a href="http://cvsgui.sourceforge.net/">MacCVS</a>:<br>
|
||||
<br>
|
||||
CVSROOT:anonymous@cvs.macssh.sourceforge.net:/cvsroot/macssh<br>
|
||||
authentication: Password ("pserver")<br> then checkout module "MacSSH" in an empty "MacSSH" folder.<br>
|
||||
authentication: Password ("pserver")<br>
|
||||
then checkout module "MacSSH" in an empty "MacSSH" folder.<br>
|
||||
<br>
|
||||
with <a href="http://sourceforge.net/projects/maccvspro/">MacCVS Pro</a>:<br>
|
||||
<br>
|
||||
|
|
|
|||
Loading…
Reference in New Issue