Fish with certificate

classic Classic list List threaded Threaded
9 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Fish with certificate

Koenraad Lelong
Hi,

Is there a way to "fish://" to an ssh-server with a certificate ?
I can login using my client-certificate, but how can I use fish:// with
the same server ?

TIA,

Koenraad

--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with certificate

Carlos E. R.-2
On 2017-06-16 12:43, Koenraad Lelong wrote:
> Hi,
>
> Is there a way to "fish://" to an ssh-server with a certificate ?
> I can login using my client-certificate, but how can I use fish:// with
> the same server ?

But ssh does not use certificates, AFAIK.

--
Cheers / Saludos,

                Carlos E. R.
                (from 42.2 x86_64 "Malachite" at Telcontar)


signature.asc (188 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with certificate

James Knott
On 06/16/2017 07:11 AM, Carlos E. R. wrote:
> On 2017-06-16 12:43, Koenraad Lelong wrote:
>> Hi,
>>
>> Is there a way to "fish://" to an ssh-server with a certificate ?
>> I can login using my client-certificate, but how can I use fish:// with
>> the same server ?
> But ssh does not use certificates, AFAIK.
>

I regularly use fish to access my computers without any problem.  I
assumed it just used the regular ssh private/public key pair.


--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with keys (was : Fish with certificate)

Koenraad Lelong
In reply to this post by Carlos E. R.-2
Op 16-06-17 om 13:11 schreef Carlos E. R.:
> On 2017-06-16 12:43, Koenraad Lelong wrote:
>> Hi,
>>
>> Is there a way to "fish://" to an ssh-server with a certificate ?
>> I can login using my client-certificate, but how can I use fish:// with
>> the same server ?
>
> But ssh does not use certificates, AFAIK.
>

Sorry, I meant (private/public) keys.

Koenraad


--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with keys (was : Fish with certificate)

James Knott
On 06/16/2017 09:24 AM, Koenraad Lelong wrote:

> Op 16-06-17 om 13:11 schreef Carlos E. R.:
>> On 2017-06-16 12:43, Koenraad Lelong wrote:
>>> Hi,
>>>
>>> Is there a way to "fish://" to an ssh-server with a certificate ?
>>> I can login using my client-certificate, but how can I use fish:// with
>>> the same server ?
>>
>> But ssh does not use certificates, AFAIK.
>>
>
> Sorry, I meant (private/public) keys.
>

As I mentioned earlier, it does.


--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with keys (was : Fish with certificate)

Koenraad Lelong
Op 16-06-17 om 16:02 schreef James Knott:

> On 06/16/2017 09:24 AM, Koenraad Lelong wrote:
>> Op 16-06-17 om 13:11 schreef Carlos E. R.:
>>> On 2017-06-16 12:43, Koenraad Lelong wrote:
>>>> Hi,
>>>>
>>>> Is there a way to "fish://" to an ssh-server with a certificate ?
>>>> I can login using my client-certificate, but how can I use fish:// with
>>>> the same server ?
>>>
>>> But ssh does not use certificates, AFAIK.
>>>
>>
>> Sorry, I meant (private/public) keys.
>>
>
> As I mentioned earlier, it does.
>
>
OK,

Can you tell me how you do it ?
Without keys I do this :
- open Dolphin
- click on the "address-bar".
- enter "fish://user@server".
- if not saved in the wallet, I get a messagebox where I can enter the
password.
- access files

How do you specify the key to use ?

TIA,

Koenraad.

--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with keys (was : Fish with certificate)

James Knott
On 06/16/2017 10:17 AM, Koenraad Lelong wrote:

>> As I mentioned earlier, it does.
>>
>>
> OK,
>
> Can you tell me how you do it ?
> Without keys I do this :
> - open Dolphin
> - click on the "address-bar".
> - enter "fish://user@server".
> - if not saved in the wallet, I get a messagebox where I can enter the
> password.
> - access files
>
> How do you specify the key to use ?

I configured the ssh server to accept passwordless connections.  This
requires setting up a private/public key pair and then adding the public
key to /.ssh/authorized_keys on the "server".


--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with keys (was : Fish with certificate)

Carlos E. R.-2
In reply to this post by Koenraad Lelong
On 2017-06-16 16:17, Koenraad Lelong wrote:
> Op 16-06-17 om 16:02 schreef James Knott:


>>> Sorry, I meant (private/public) keys.
>>>
>>
>> As I mentioned earlier, it does.
>>
>>
> OK,
>
> Can you tell me how you do it ?
> Without keys I do this :
> - open Dolphin
> - click on the "address-bar".
> - enter "fish://user@server".
> - if not saved in the wallet, I get a messagebox where I can enter the
> password.
> - access files
>
> How do you specify the key to use ?
You set it up for ssh terminal access with private/public keys; once
that it done, dolphin should just use them as well.

If you have password entry disallowed, then Dolphin has no other
recourse but use the keys.

Typically the dsa.pub file contains the login name and machine, but I
think it is just a comment.


On my notes, on the file ~/.ssh/config (client) I tried sometime this
syntax:

host           cvs.sourceforge.net
IdentityFile   /home/cer/.ssh/shsf_dsa


--
Cheers / Saludos,

                Carlos E. R.
                (from 42.2 x86_64 "Malachite" at Telcontar)


signature.asc (188 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Fish with keys (was : Fish with certificate)

Koenraad Lelong
Op 16-06-17 om 20:06 schreef Carlos E. R.:
...

Unfortunately, I can't get it to work.
On the commandline I can successfully connect :
ssh -i key-file -p <someport> [hidden email]

when I try with Dolphin :
fish://[hidden email]:<someport>
gives an error : can't connect to example.com

Sniffing with wireshark shows some traffic (over that port) with
example.com, but no real connection. When I follow the tcp-stream, the
first few lines of the conversation are the same (AFAICS) as with the
command-line but then it stops.

That's running with OS13.2. I know I should upgrade ;-)

Koenraad

--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]

Loading...