Jump to content


Photo

passwordless ssh connect _from_ solo2 receiver

ssh passwordless dropbear keygen dropbearkey

  • Please log in to reply
12 replies to this topic

#1 bixofe8810

  • Member
  • 6 posts

0
Neutral

Posted 7 February 2022 - 19:22

Hi,

I am trying to passwordless connect _from_ my solo2 receiver (latest openpli 8.1) to my local network host.

I have no problems connecting _to_ my receiver passwordless.

Problem is every time it asks for password:
i.e. solo2_root# ssh name@hostname

All attempts require password being typed in.
I tried generating new priv/pub keys etc, copying them to target known_hosts etc without success.

Does anyone know whether this can be achieved ?

Thank you.
Bixo



Re: passwordless ssh connect _from_ solo2 receiver #2 catastrofus

  • Senior Member
  • 3,482 posts

+43
Good

Posted 7 February 2022 - 20:43

What os runs your "local network host"?


2 x vu+ultimo4k ((nb & 9.0r) dvb-c fbc + 1 dvb-s2) + een vu+duo4k ((nb) fallbackclient) met een Synology ds214+ (2 x 6 TB) op DSM 7.1.1 in ziggo oost (voormalig @Home) + A1/A2/A3/HB (TechniSat)
 


Re: passwordless ssh connect _from_ solo2 receiver #3 bixofe8810

  • Member
  • 6 posts

0
Neutral

Posted 7 February 2022 - 21:49

Hi,

 

Thank you for response.

 

My local host is running linux ( latest mint flavour ).

I have no issues ssh to solo from it.

 

But the other way round it always asks for password.

 

I have added the solo pub key to target authorized_keys file.

The known hosts is also updated on target .,

 

Yet , I do not have luck so far.

Trying many different combiunations of what I know ... not yet :-(



Re: passwordless ssh connect _from_ solo2 receiver #4 bixofe8810

  • Member
  • 6 posts

0
Neutral

Posted 7 February 2022 - 21:52

somethign like that:

 

# dropbearkey -t rsa -f /etc/dropbear/dropbear_rsa_host_key

 

#

added the output to  authorized_keys on target machine



Re: passwordless ssh connect _from_ solo2 receiver #5 catastrofus

  • Senior Member
  • 3,482 posts

+43
Good

Posted 8 February 2022 - 09:48

Why not using the standard /home/root/.ssh dir for your keys?


2 x vu+ultimo4k ((nb & 9.0r) dvb-c fbc + 1 dvb-s2) + een vu+duo4k ((nb) fallbackclient) met een Synology ds214+ (2 x 6 TB) op DSM 7.1.1 in ziggo oost (voormalig @Home) + A1/A2/A3/HB (TechniSat)
 


Re: passwordless ssh connect _from_ solo2 receiver #6 bixofe8810

  • Member
  • 6 posts

0
Neutral

Posted 8 February 2022 - 10:53

Hi,

 

I tried putting keys in:

 /home/root/.ssh

/etc/dropbear/

 

Created new user X and generated new keys for him, added keys to authorised on target.

No luck connecting passwordless to target from solo.

 

Clueless now.

Bixo



Re: passwordless ssh connect _from_ solo2 receiver #7 catastrofus

  • Senior Member
  • 3,482 posts

+43
Good

Posted 8 February 2022 - 10:57

I think you have a permission problem with your keypair. Normally you create them in the /home/root/.ssh directory (id_rsa & id_rsa.pub) and this directory should have a permission of 700

Your private key (id_rsa) must have the 600 permission, your public key (id_rsa.pub) the 644 permission.


2 x vu+ultimo4k ((nb & 9.0r) dvb-c fbc + 1 dvb-s2) + een vu+duo4k ((nb) fallbackclient) met een Synology ds214+ (2 x 6 TB) op DSM 7.1.1 in ziggo oost (voormalig @Home) + A1/A2/A3/HB (TechniSat)
 


Re: passwordless ssh connect _from_ solo2 receiver #8 bixofe8810

  • Member
  • 6 posts

0
Neutral

Posted 8 February 2022 - 12:14

Hi Catastrofus,

 

 

I have:

 

root@vusolo2:~# pwd
/home/root

 

drwx------    2 root     root           440 Feb  8 09:48 .ssh

 

root@vusolo2:~/.ssh# pwd
/home/root/.ssh

root@vusolo2:~/.ssh# ls -l
-rw-r--r--    1 root     root           564 Feb  7 15:19 authorized_keys
-rw-------    1 root     root           805 Feb  8 09:46 id_rsa
-rw-r--r--    1 root     root           394 Feb  8 09:48 id_rsa.pub
-rw-r--r--    1 root     root           341 Feb  7 15:08 known_hosts



Re: passwordless ssh connect _from_ solo2 receiver #9 catastrofus

  • Senior Member
  • 3,482 posts

+43
Good

Posted 8 February 2022 - 12:33

According to 'ssh -h' on an openpli box, the default keypair is (apparently) named id_dropbear instead of id_rsa:

 

root@idefix:~# ssh -h
Dropbear SSH client v2019.78 https://matt.ucc.asn...r/dropbear.html
Usage: ssh [options] [user@]host[/port][,[user@]host/port],...] [command]
-p <remoteport>
-l <username>
-t    Allocate a pty
-T    Don't allocate a pty
-N    Don't run a remote command
-f    Run in background after auth
-y    Always accept remote host key if unknown
-y -y Don't perform any remote host key checking (caution)
-s    Request a subsystem (use by external sftp)
-o option     Set option in OpenSSH-like format ('-o help' to list options)
-i <identityfile>   (multiple allowed, default .ssh/id_dropbear)
-A    Enable agent auth forwarding
-L <[listenaddress:]listenport:remotehost:remoteport> Local port forwarding
-g    Allow remote hosts to connect to forwarded ports
-R <[listenaddress:]listenport:remotehost:remoteport> Remote port forwarding
-W <receive_window_buffer> (default 24576, larger may be faster, max 1MB)
-K <keepalive>  (0 is never, default 0)
-I <idle_timeout>  (0 is never, default 0)
-B <endhost:endport> Netcat-alike forwarding
-J <proxy_program> Use program pipe rather than TCP connection
-c <cipher list> Specify preferred ciphers ('-c help' to list options)
-m <MAC list> Specify preferred MACs for packet verification (or '-m help')
-b    [bind_address][:bind_port]
-V    Version
root@idefix:~#

 


 


Edited by catastrofus, 8 February 2022 - 12:37.

2 x vu+ultimo4k ((nb & 9.0r) dvb-c fbc + 1 dvb-s2) + een vu+duo4k ((nb) fallbackclient) met een Synology ds214+ (2 x 6 TB) op DSM 7.1.1 in ziggo oost (voormalig @Home) + A1/A2/A3/HB (TechniSat)
 


Re: passwordless ssh connect _from_ solo2 receiver #10 Pr2

  • PLi® Contributor
  • 6,194 posts

+261
Excellent

Posted 8 February 2022 - 12:40

Hi,

 

There is no several user on the STB only root exist (except if you create another).

So connect with root on the STB then.

cd
mkdir .ssh
cd .ssh
vi authorized_keys

There paste the id_rsa public key (ed25519 are not supported I think so use RSA)

Save your change and disconnect from vi.  ESC wq!

Disconnect from your STB.

On your PC in the .ssh folder place the private part of your RSA key.
chmod 600 id_rsa

Then simply use:

ssh root@IP_OF_YOUR_STB

And you will connect without password prompt.

NO SUPPORT by PM, it is a forum make your question public so everybody can benefit from the question/answer.
If you think that my answer helps you, you can press the up arrow in bottom right of the answer.

Wanna help with OpenPLi Translation? Please read our Wiki Information for translators

Sat: Hotbird 13.0E, Astra 19.2E, Eutelsat5A 5.0W
VU+ Solo 4K: 2*DVB-S2 + 2*DVB-C/T/T2 (used in DVB-C) & Duo 4K: 2*DVB-S2X + DVB-C (FBC)

AB-Com: PULSe 4K 1*DVB-S2X (+ DVB-C/T/T2)
Edision OS Mio 4K: 1*DVB-S2X + 1*DVB-C/T/T2
 


Re: passwordless ssh connect _from_ solo2 receiver #11 bixofe8810

  • Member
  • 6 posts

0
Neutral

Posted 8 February 2022 - 12:48

Hi catastrofus,

 

I renamed my id_rsa to id_dropbear and id_rsa.pub to id_dropbear.pub

 

AND IT WORKS !!!!!!  you soved it.

 

Now I can do passwordless connections from both sides of my solo2.

 

I am so grateful for your help . Thank you. Thank you very much !

In the future I'll make sure to take more notice with the help of "-h" flags.

 

Best regards,

Bixo



Re: passwordless ssh connect _from_ solo2 receiver #12 littlesat

  • PLi® Core member
  • 57,422 posts

+708
Excellent

Posted 9 February 2022 - 12:55

FYI...

http://www.milosoftw...p?body=dropbear


WaveFrontier 28.2E | 23.5E | 19.2E | 16E | 13E | 10/9E | 7E | 5E | 1W | 4/5W | 15W


Re: passwordless ssh connect _from_ solo2 receiver #13 catastrofus

  • Senior Member
  • 3,482 posts

+43
Good

Posted 9 February 2022 - 20:30

Not valid for this situation.


2 x vu+ultimo4k ((nb & 9.0r) dvb-c fbc + 1 dvb-s2) + een vu+duo4k ((nb) fallbackclient) met een Synology ds214+ (2 x 6 TB) op DSM 7.1.1 in ziggo oost (voormalig @Home) + A1/A2/A3/HB (TechniSat)
 




Also tagged with one or more of these keywords: ssh, passwordless, dropbear, keygen, dropbearkey

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users