If you have SSH installed, you should be able to run..

    ssh-keygen

Then go through the steps, you&#39;ll have two files, `id_rsa` and `id_rsa.pub` (the first is your private key, the second is your public key - the one you copy to remote machines)

Then, connect to the remote machine you want to login to, to the file `~/.ssh/authorized_keys` add the contents of your that `id_rsa.pub` file.

Oh, and `chmod 600` all the `id_rsa*` files (both locally and remote), so no other users can read them:

    chmod 600 ~/.ssh/id_rsa*

Similarly, ensure the remote `~/.ssh/authorized_keys` file is `chmod 600` also:

    chmod 600 ~/.ssh/authorized_keys

Then, when you do `ssh remote.machine`, it should ask you for the key&#39;s password, not the remote machine.

---

To make it nicer to use, you can use `ssh-agent` to hold the decrypted keys in memory - this means you don&#39;t have to type your keypair&#39;s password every single time. To launch the agent, you run (including the back-tick quotes, which eval the output of the `ssh-agent` command)

    `ssh-agent`

On some distros, ssh-agent is started automatically. If you run `echo $SSH_AUTH_SOCK` and it shows a path (probably in /tmp/) it&#39;s already setup, so you can skip the previous command.

Then to add your key, you do

    ssh-add ~/.ssh/id_rsa

and enter your passphrase. It&#39;s stored until you remove it (using the `ssh-add -D` command, which removes all keys from the agent)

For windows [this][3] is a good introduction and guide

Here are some good ssh-agents for systems other than linux.

  - Windows - [pageant][1]
  - OS X - [SSHKeychain][2]

[1]: http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html
[2]: http://www.askbjoernhansen.com/2005/01/07/sshkeychain_ssh.html
[3]: http://the.earth.li/~sgtatham/putty/0.53b/htmldoc/Chapter8.html

Normally I would just use:

    HttpContext.Current.Server.UrlEncode(&quot;url&quot;);

But since this is a console application, `HttpContext.Current` is always going to be `null`.

Is there another method that does the same thing that I could use?

UrlEncode through a console application?

Lots of people talk about writing tests for their code before they start writing their code. This practice is generally known as Test Driven Development or TDD for short. What benefits do I gain from writing software this way? How do I get started with this practice?

Why should I practice Test Driven Development and how should I start?

How do I setup Public-Key Authentication for SSH?

How do I setup Public-Key Authentication?

<p>How do I setup Public-Key Authentication for SSH?</p>


One of my favourite tools for linux is [lsof][1] - a real swiss army knife!

Today I found myself wondering which programs on a WinXP system had a specific file open. Is there any equivalent utility to lsof? Additionally, the file in question was over a network share so I&#39;m not sure if that complicates matters.


  [1]: http://en.wikipedia.org/wiki/Lsof &quot;Wikipedia&quot;

How can I determine whether a specific file is open in Windows?

I use VNC to connect to a Linux workstation at work.  At work I have a 20&quot; monitor that runs at 1600x1200, while at home I use my laptop with its resolution of 1440x900.
If I set the vncserver to run at 1440x900 I miss out on a lot of space on my monitor, whereas if I set it to run at 1600x1200 it doesn&#39;t fit on the laptop&#39;s screen, and I have to scroll it all the time.

Is there any good way to resize a VNC session on the fly?

My VNC server is RealVNC E4.x (I don&#39;t remember the exact version) running on SuSE64.

Changing the resolution of a VNC session in linux

I develop C++ applications in a Linux environment.  The tools I use every day include Eclipse with the CDT plugin, gdb and valgrind.  
What tools do other people use?  Is there anything out there for Linux that rivals the slickness of Microsoft Visual Studio?

What tools do you use to develop C++ applications on Linux?

I&#39;ve created a script that runs every night on my Linux server that uses &lt;code&gt;mysqldump&lt;/code&gt; to back up each of my MySQL databases to .sql files and packages them together as a compressed .tar file.  The next step I want to accomplish is to send that tar file through email to a remote email server for safekeeping.  I&#39;ve been able to send the raw script in the body an email by piping the backup text file to &lt;code&gt;mailx&lt;/code&gt; like so:

    $ cat mysqldbbackup.sql | mailx backup@email.com

&lt;code&gt;cat&lt;/code&gt; echoes the backup file&#39;s text which is piped into the &lt;code&gt;mailx&lt;/code&gt; program with the recipient&#39;s email address passed as an argument.

While this accomplishes what I need, I think it could be one step better, **Is there any way, using shell scripts or otherwise, to send the compressed .tar file to an outgoing email message as an *attachment*?**  This would beat having to deal with very long email messages which contain header data and often have word-wrapping issues etc.

How do I send a file as an email attachment using Linux command line?

I have a process in Linux that&#39;s getting a segmentation fault.  How can I tell it to generate a core dump when it fails?

How to generate a core dump in Linux on a segmentation fault?

I&#39;d like to allow a user to set up an SSH tunnel to a particular machine on a particular port (say, 5000), but I want to restrict this user as much as possible. (Authentication will be with public/private keypair).

I know I need to edit the relevant ~/.ssh/authorized_keys file, but I&#39;m not sure exactly what content to put in there (other than the public key).

Allow user to set up an SSH tunnel, but nothing else

Trying to setup an SSH server on Windows Server 2003. What are some good ones? Preferably open source. I plan on using WinSCP as a client so a server which supports the advanced features implemented by that client would be great.

What are some good SSH Servers for windows?

This is a follow-on question to the [How do you use ssh in a shell script?][1] question.  If I want to execute a command on the remote machine that runs in the background on that machine, how do I get the ssh command to return?  When I try to just include the ampersand (&amp;amp;) at the end of the command it just hangs.  The exact form of the command looks like this:

    ssh user@target &quot;cd /some/directory; program-to-execute &amp;&quot;

Any ideas?  One thing to note is that logins to the target machine always produce a text banner and I have **SSH** keys set up so no password is required.


  [1]: https://stackoverflow.com/questions/29061/how-do-you-use-ssh-in-a-shell-script

Getting ssh to execute a command in the background on target machine

I have a text file on my local machine that is generated by a daily Python script run in cron. 

I would like to add a bit of code to have that file sent securely to my server over SSH.

How to copy a file to a remote server in Python using SCP or SSH?

ssh will look for its keys by default in the ~/.ssh folder. I want to force it to always look in another location.

The workaround I&#39;m using is to add the keys from the non-standard location to the agent:

    ssh-agent
    ssh-add /path/to/where/keys/really/are/id_rsa 

(on Linux and MingW32 shell on Windows)

Setting the default ssh key location

Background: My boss has tried exporting an ASC key to me with public and private parts but whenever I get the file the private part never loads up and it won&#39;t decrypt any files.

We have tried Exporting the ASC Key using: 

- Windows Application Kleopatra 2.1 (included in gpg4win)
- Windows Application GNU Privacy Assistant (included in gpg4win) 


                Error: &quot;Decryption failed. Secret Key Not available.&quot; 

How do you properly export a secret or private asc key to decrypt gpg files? 

How to Export Private / Secret ASC Key to Decrypt GPG Files

Are the exported private keys gotten by executing `gpg --export-secret-keys` still encrypted and protected by their passphrase? This seems to be the case but I can&#39;t find anywhere that explicitly confirms this.

If the exported keys are still encrypted then is there anyway to get the pure, unencrypted private key (like you can for the public segment)?

Are exported private keys in GPG still encrypted?

Can anyone tell me the correct way/command to extract/convert the certificate `.crt` and private key `.key` files from a `.pem` file? I just read they are interchangable, but not how.

Convert .pem to .crt and .key

`PEM_read_bio_PrivateKey()` returns `NULL` if a private key is encrypted by DES EDE in ECB mode. The issue happens in `EVP_DecryptFinal_ex()`:

`4128:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:evp_enc.c:330:`

If the same private key is encrypted by DES EDE in CBC mode, this function works OK.

I checked, this issue is reproducible on openssl 0.9.8r/y versions (without FIPS). If openssl is built with FIPS the issue doesn&#39;t happen.

What causes this behaviour?

Thanks!

PEM_read_bio_PrivateKey() returns NULL in ECB mode only

I am trying to get a better grapple on how public/private keys work. I understand that a sender may add a digital signature to a document using his/her private key to essentially obtain a hash of the document, but what I do not understand is how the public key can be used to verify that signature. 

My understanding was that public keys encrypt, private keys decrypt... can anyone help me understand? 


How does a public key verify a signature?

I tried to connect to planetlab node using ssh. It throws me error like Permission denied (publickey,keyboard-interactive). What does this mean?
Here is the verbose of the exception.

    &gt; OpenSSH_5.1p1 Debian-5ubuntu1, OpenSSL
    &gt; 0.9.8g 19 Oct 2007 debug1: Reading configuration data /etc/ssh/ssh_config
    &gt; debug1: Applying options for * debug2:
    &gt; ssh_connect: needpriv 0 debug1:
    &gt; Connecting to planetlab1.csee.usf.edu
    &gt; [131.247.2.241] port 22. debug1:
    &gt; Connection established. debug1:
    &gt; permanently_set_uid: 0/0 debug3: Not a
    &gt; RSA1 key file /home/keven/.ssh/id_rsa.
    &gt; debug2: key_type_from_name: unknown
    &gt; key type &#39;-----BEGIN&#39; debug3:
    &gt; key_read: missing keytype debug2:
    &gt; key_type_from_name: unknown key type
    &gt; &#39;Proc-Type:&#39; debug3: key_read: missing
    &gt; keytype debug2: key_type_from_name:
    &gt; unknown key type &#39;DEK-Info:&#39; debug3:
    &gt; key_read: missing keytype debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug3:
    &gt; key_read: missing whitespace debug2:
    &gt; key_type_from_name: unknown key type
    &gt; &#39;-----END&#39; debug3: key_read: missing
    &gt; keytype debug1: identity file
    &gt; /home/keven/.ssh/id_rsa type 1 debug1:
    &gt; Checking blacklist file
    &gt; /usr/share/ssh/blacklist.RSA-2048
    &gt; debug1: Checking blacklist file
    &gt; /etc/ssh/blacklist.RSA-2048 debug1:
    &gt; Remote protocol version 2.0, remote
    &gt; software version OpenSSH_4.7 debug1:
    &gt; match: OpenSSH_4.7 pat OpenSSH_4*
    &gt; debug1: Enabling compatibility mode
    &gt; for protocol 2.0 debug1: Local version
    &gt; string SSH-2.0-OpenSSH_5.1p1
    &gt; Debian-5ubuntu1 debug2: fd 3 setting
    &gt; O_NONBLOCK debug1: SSH2_MSG_KEXINIT
    &gt; sent debug1: SSH2_MSG_KEXINIT received
    &gt; debug2: kex_parse_kexinit:
    &gt; diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
    &gt; debug2: kex_parse_kexinit:
    &gt; ssh-rsa,ssh-dss debug2:
    &gt; kex_parse_kexinit:
    &gt; aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
    &gt; debug2: kex_parse_kexinit:
    &gt; aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
    &gt; debug2: kex_parse_kexinit:
    &gt; hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    &gt; debug2: kex_parse_kexinit:
    &gt; hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    &gt; debug2: kex_parse_kexinit:
    &gt; none,zlib@openssh.com,zlib debug2:
    &gt; kex_parse_kexinit:
    &gt; none,zlib@openssh.com,zlib debug2:
    &gt; kex_parse_kexinit:  debug2:
    &gt; kex_parse_kexinit:  debug2:
    &gt; kex_parse_kexinit: first_kex_follows 0
    &gt; debug2: kex_parse_kexinit: reserved 0 
    &gt; debug2: kex_parse_kexinit:
    &gt; diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
    &gt; debug2: kex_parse_kexinit:
    &gt; ssh-rsa,ssh-dss debug2:
    &gt; kex_parse_kexinit:
    &gt; aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
    &gt; debug2: kex_parse_kexinit:
    &gt; aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
    &gt; debug2: kex_parse_kexinit:
    &gt; hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    &gt; debug2: kex_parse_kexinit:
    &gt; hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    &gt; debug2: kex_parse_kexinit:
    &gt; none,zlib@openssh.com debug2:
    &gt; kex_parse_kexinit:
    &gt; none,zlib@openssh.com debug2:
    &gt; kex_parse_kexinit:  debug2:
    &gt; kex_parse_kexinit:  debug2:
    &gt; kex_parse_kexinit: first_kex_follows 0
    &gt; debug2: kex_parse_kexinit: reserved 0 
    &gt; debug2: mac_setup: found hmac-md5
    &gt; debug1: kex: server-&gt;client aes128-cbc
    &gt; hmac-md5 none debug2: mac_setup: found
    &gt; hmac-md5 debug1: kex: client-&gt;server
    &gt; aes128-cbc hmac-md5 none debug1:
    &gt; SSH2_MSG_KEX_DH_GEX_REQUEST(1024&lt;1024&lt;8192)
    &gt; sent debug1: expecting
    &gt; SSH2_MSG_KEX_DH_GEX_GROUP debug2:
    &gt; dh_gen_key: priv key bits set: 128/256
    &gt; debug2: bits set: 508/1024 debug1:
    &gt; SSH2_MSG_KEX_DH_GEX_INIT sent debug1:
    &gt; expecting SSH2_MSG_KEX_DH_GEX_REPLY
    &gt; debug3: check_host_in_hostfile:
    &gt; filename /root/.ssh/known_hosts
    &gt; debug3: check_host_in_hostfile: match
    &gt; line 1 debug3: check_host_in_hostfile:
    &gt; filename /root/.ssh/known_hosts
    &gt; debug3: check_host_in_hostfile: match
    &gt; line 2 debug1: Host
    &gt; &#39;planetlab1.csee.usf.edu&#39; is known and
    &gt; matches the RSA host key. debug1:
    &gt; Found key in /root/.ssh/known_hosts:1
    &gt; debug2: bits set: 535/1024 debug1:
    &gt; ssh_rsa_verify: signature correct
    &gt; debug2: kex_derive_keys debug2:
    &gt; set_newkeys: mode 1 debug1:
    &gt; SSH2_MSG_NEWKEYS sent debug1:
    &gt; expecting SSH2_MSG_NEWKEYS debug2:
    &gt; set_newkeys: mode 0 debug1:
    &gt; SSH2_MSG_NEWKEYS received debug1:
    &gt; SSH2_MSG_SERVICE_REQUEST sent debug2:
    &gt; service_accept: ssh-userauth debug1:
    &gt; SSH2_MSG_SERVICE_ACCEPT received
    &gt; debug2: key: /home/keven/.ssh/id_rsa
    &gt; (0xb80c9878) debug1: Authentications
    &gt; that can continue:
    &gt; publickey,keyboard-interactive debug3:
    &gt; start over, passed a different list
    &gt; publickey,keyboard-interactive debug3:
    &gt; preferred
    &gt; gssapi-keyex,gssapi-with-mic,gssapi,publickey,keyboard-interactive,password
    &gt; debug3: authmethod_lookup publickey
    &gt; debug3: remaining preferred:
    &gt; keyboard-interactive,password debug3:
    &gt; authmethod_is_enabled publickey
    &gt; debug1: Next authentication method:
    &gt; publickey debug1: Offering public key:
    &gt; /home/keven/.ssh/id_rsa debug3:
    &gt; send_pubkey_test debug2: we sent a
    &gt; publickey packet, wait for reply
    &gt; debug1: Authentications that can
    &gt; continue:
    &gt; publickey,keyboard-interactive debug2:
    &gt; we did not send a packet, disable
    &gt; method debug3: authmethod_lookup
    &gt; keyboard-interactive debug3: remaining
    &gt; preferred: password debug3:
    &gt; authmethod_is_enabled
    &gt; keyboard-interactive debug1: Next
    &gt; authentication method:
    &gt; keyboard-interactive debug2:
    &gt; userauth_kbdint debug2: we sent a
    &gt; keyboard-interactive packet, wait for
    &gt; reply debug1: Authentications that can
    &gt; continue:
    &gt; publickey,keyboard-interactive debug3:
    &gt; userauth_kbdint: disable: no
    &gt; info_req_seen debug2: we did not send
    &gt; a packet, disable method debug1: No
    &gt; more authentication methods to try.
    &gt; Permission denied
    &gt; (publickey,keyboard-interactive).



Permission denied (publickey,keyboard-interactive)

What is the difference between a cer, pvk, and pfx file? Also, which files do I keep and which am I expected to give to my counter-parties?

What is the difference between a cer, pvk, and pfx file?

I&#39;m on Mac Snow Leopard and I just installed `git`.

I just tried 

    git clone git@thechaw.com:cakebook.git

but that gives me this error:

    Initialized empty Git repository in `/Users/username/Documents/cakebook/.git/`
    Permission denied (publickey).
    fatal: The remote end hung up unexpectedly


What am I missing?  
I&#39;ve also tried doing `ssh-keygen` with no passphase but still same error.


Git: How to solve Permission denied (publickey) error when using Git?

I am developing some private projects on Github, and I would like to add nightly cronjobs to my deployments servers to pull the latest version from github. I am currently doing this by generating keypairs on every deployment server and adding the public key to the github project as &#39;Deployment key&#39;. 

However, I recently found out that these deployment keys actually do have write access to the project. Hence, every of the server administrators could potentially start editing. Furthermore I can add every deployment key to only one repository, whereas I would like to be able to deploy multiple repositories on one and the same deployment server.

Is there a way to provide read-only access for private repositories to selected users on Github?

Github: readonly access to a private repo

I have used Puttygen to create a public and a private key, and then is ready to let TortoiseHg on Windows 7 do a clone by going to 

    ssh://somebody@code.somewhere.com/somecode

but there seems to be no where to add the private key to TortoiseHg?  (or even just the mercurial command line)

The file is already some where on hard disk as somefile.ppk   Does someone know how to add it?


Content Type	Original Author	Original Content on Stackoverflow
Question	Eldila	View Question on Stackoverflow
Solution 1 - Linux	dbr	View Answer on Stackoverflow
Solution 2 - Linux	roo	View Answer on Stackoverflow

How do I setup Public-Key Authentication?

Linux Problem Overview

Linux Solutions

Solution 1 - Linux

Solution 2 - Linux

Why should I practice Test Driven Development and how should I start?

UrlEncode through a console application?

Attributions