Dear friends,

I read a lot of replies and tried to make a connection whithout password between a Ubuntu client ssh and a Windows Freesshd Server.
Unfortunatly I couldn´t do that.
I generated a Key Rsa in UBUNTU whith ssh-keygen and I put the public rsa key into file c:/program files/freeSSHd/ssh_public_keys, but every time I tried to connected I received this answer in UBUNTU (debian) prompt : "Permission denied (publickey)".
I could connect if I allow password, and then I got the password prompt e get Windows prompt.
What could I do to make it works?
Please help me because I need to generate a Ubuntu backup and other OPENBSB backups in this WINDOWS SERVER whith scripts shell and ssh transfer (I could do it whith FreeSSHd ?)
Thank You for all!
God Bless you!

hi all,

well i hope the key format should now be clear for all. its clearly described not to copy the PuTTYgen key as it is, but to copy&paste the text of the key in a new file.

i think the main problem is the Allow & Required setting in the Authentication tab. the problem is, that when one of both is set to required, the other method that is set to Allow, wont work. thats cause the other method is set to required and vice verca. IMO the best setting is to set both to Allow, and then test your connection and then decide which method you prefer. then you can set it to required and the other to disabled. till then, just leave both on Allowed, and both Authentication methods work.

bye

I know it says "Public Key Authentication" but I wanted to add something for those who want to use password only without a key:

freeSSHd version 1.2.0

1) Users tab: Setup a user and a password (Password stored as SHA1 hash)

2) Host Restrictions tab: I used "Host restrictions" as my secondary security method. I only connect from my local network so I added 192.* as my only allowed host(s). If you do this don't forget to select "Allow only these IP addresses" above the box where you enter in your allowed IP addresses.

3) Authentication tab: I set "Password authentication" to "Required" and "Public key authentication" to Disabled"

4) THE MOST IMPORTANT STEP: Unload and reload freeSSHd!

I hope this helps someone to save the time that I wasted.

Best regards and w0rd out!

best would be if any recored how to
then all can watch how to =)

Hi @ll.
My Question to you. Have someone a manual from this programm?
I need some. Yesterday I installed this programm on my home-server and I configure everything. The Fritzbox with port-forwarding and also the Userers. But it doesn´t work. I do´t know to go on so can you help me? It would be nice if you can put a manual on the download register. This would help much.

Tried and still not working:

1. Generated a key using PuTTYgen.
2. Created a public key by using the copy-paste method as described in the second post. Renamed this to John and placed it in the public key folder listed on the Authentication tab of freeSSHd.
3. Created a private key using the "save private key" button in the PuTTYgen window. Using this key under my client computer under ssh/auth.
4. Exported an OpenSSH key using the menu option in PuTTYgen (Conversions/ Export OpenSSH key). Placed this into the RSA Key in freeSHHd on the SSH tab.

When I attempt to connect, I get prompted for a user name and then a password. Why? I selected the SSH Public Key for the user's login.
Any ideas??

Quote:

---

Tried and still not working:

When I attempt to connect, I get prompted for a user name and then a password. Why? I selected the SSH Public Key for the user's login.
Any ideas??

---

you have to create a user account under freesshd and that username must be used to login no matter what authentication method you use.

i couldn't get freesshd to recognize the generated putty private key, so here's what worked for me instead.

1) generate a 1024 bit RSA key with freesshd under the "SSH" tab.
2) then load that key into puttygen. (run puttygen and click "load" and select "all files (*.*)" under file type and find your previously generated key) then in puttygen you can type a passphase and save the private key as "whatever.ppk"
3) copy the stuff in the openssh box at the top of the puttygen window and paste it into a text file saved under some public keys folder. (any folder, you choose)
4) name that text file whatever login name you have set under your freesshd users. (if your freesshd username is "john" name the text file "john" NOT "john.txt" or "john.ppk".
5) let freesshd keep using the private rsa key it already created at the beginning, DO NOT POINT TO THE PUTTY PRIVATE KEY!
6) point the public key folder to wherever you have your "john" file saved.

now when using your ssh/ftp/scp client use the private "whatever.ppk" key.

*NOTE: assuming you created a freesshd user account with a password, you can set authentication modes to anything you want. you can allow both password and public key if want but this is only as secure as your username and password because a hacker won't be requested to provide the public key if he can just brute force your password. likewise you can set both authentications to "required" if you're a paranoid freak (like me).

i should mention that i created a new user for the freesshd with "password verification" NOT "NT verification" so i'm not sure if the above method will allow both authentication protocalls if you're using NT verification but i don't see why not.

also i generated a 1024 bit key with freesshd because puttygen only works up to 1024 bits (my version of putty anyway). if you've hacked putty to work with 2048 bit keys then go for it.

!!FINAL NOTE!!
i'm not sure if using the freesshd private key instead of the puttygen private key under the freesshd "SSH" tab introduces any security holes? i'm a little new at this whole key exchange deal.... okay, yes i'm a n00b!

hope this helps somebody and doesn't confuse people even more.

Quote:

---

also i generated a 1024 bit key with freesshd because puttygen only works up to 1024 bits (my version of putty anyway). if you've hacked putty to work with 2048 bit keys then go for it.

---

woops! that's not true at all! sorry.

Quote:

---

*NOTE: assuming you created a freesshd user account with a password, you can set authentication modes to anything you want. you can allow both password and public key if want but this is only as secure as your username and password because a hacker won't be requested to provide the public key if he can just brute force your password. likewise you can set both authentications to "required" if you're a paranoid freak (like me).

---

after a little more playing around i determined it's best to leave password authentication on "allowed" and public key "required". some programs get confused if both are set to required, puTTy for example. but WinSCP works fine with both authentications required.

allowing both still works but like i said it will only be as secure as your password because the public key can be bypassed by a hacker.

sorry for all the posts

Hii Guys..
I am trying to connect from HP unix to windows machine since few days, wih password it is working fine,when i try with key , i am getting below error

"Permission denied (publickey)".

I have followed all steps recommended in the forum. But it's not working.
I have seen that before me ,some one has also asked same query.
Does anyone suggest what could be possible solution????

Regards
Rocky