Saturday, January 17, 2015

SSH important options and there meaning

These are important to me, in the following cases. (Disclaimer, there are potential security loopholes in using the suggestion as given)
These are options set on source (from where you are ssh’ing)
  • Host *
  • ForwardAgent yes (forwarding ssh-agent, so that you do not need to distribute your private keys everywhere)
  • CheckHostIP yes (probably good to have for security)
  • StrictHostKeyChecking no (disables security attribute associated with keys to hosts)
  • TCPKeepAlive yes (very handy in shaky internets)
  • #AllowTcpForwarding yes (this is only required when you use ssh as a socks proxy)
  • UserKnownHostsFile /dev/null (security threat, handy when you have a cloud env, where the same IP are assigned to new setups)
  • IdentitiesOnly yes (very handy, when you have a large no. of keys loaded into your ssh-agent and occasionally you have to log into a server with another key)
at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

VIM issues with powerline

What to do if you get this annoying issue - vi requirements.txt ...