From November 15, 2011, the gateway to go into the gateway server (sshsolar.nro.nao.ac.jp) of Nobeyama Sola Radio Observatory from the outside of National Astronomical Observatory of Japan is available to only public key authentication of ssh (pubkey).
Because the conventional password authentication is in weak the attack from the outside, there are some cases by which accounts are abused by brute force attack actually.
Please write in a public key "only one" at new user registration with the following way. After logging in once, you can add some keys to ~/.ssh/authorized_keys. When inputting some keys by mistake at user registration, only first one is effective.
The making method of new public key pair is as follows. Please make the RSA key of SSH2 and register it.
Note: After login to sshsolar, you can login to the other servers (ex. burst1) by password authentication.
ssh-keygen -t rsaAfter command input as follows.
% ssh-keygen -t rsa Generating public/private dsa key pair. Enter file in which to save the key (/home/yourname/.ssh/id_rsa):You are asked saving file name. Unless you made id_dsa already, you shall save default (~/.ssh/id_rsa). In this case, just as it is Enter. Next, you are asked as follows.
Enter passphrase (empty for no passphrase):"The passphrase of the key pair named id_rsa" is established. A login password is the password established by the login host, but this passphrase is the code character string to use id_dsa key belonged to your host. Please input some character strings which are not forgot. These character strings are not indicated.
Enter same passphrase again:Reconfirmation can be asked, so please input same character strings. If it has to be able to input these,
Passphrases do not match. Try again. Enter passphrase (empty for no passphrase):it will be a repeat. When it succeeds,
Your identification has been saved in /home/yourname/.ssh/id_rsa. Your public key has been saved in /home/yourname/.ssh/id_rsa.pub. The key fingerprint is: 12:34:56:78:90:ab:cd:ef:fe:dc:ba:98:76:54:32:10 yourname@localhost The key's randomart image is: +--[ RSA 2048]----+ | | | | | . | | . . | | S o o.| | .. . oo | | .oo .Eo| | . +o=o..o| | ...o +OX. .| +-----------------+ %it is shown as above. The command finish.
In case of Windows, it is different in a registration method of the public key by used application at registration. A registration method of a public key using PuTTY is explained by the following.
[foobar@burst4]$ cat id_rsa.pub >> ~/.ssh/authorized_keysIf there is no ~/.ssh/authorized_keys in your home directory, please rename the id_rsa.pub, as follows
[foobar@burst4]$ mv id_rsa.pub ~/.ssh/authorized_keys [foobar@burst4]$ chmod go-rwx ~/.ssh/authorized_keys