SSH Keys: Difference between revisions

Line 49:

'''Most Secure Keys'''

<~~syntaxhighlight lang="shell"~~>

<pre>

ssh-keygen -t ssh-ed25519 -C "[email protected]"

</~~syntaxhighlight~~>

</pre>

'''Advanced ED25519 Command'''

<~~syntaxhighlight lang="shell"~~>

<pre>

ssh-keygen -t ed25519 -C "[email protected]" -f ~/.ssh/username_id_ed25519 -N "your_passphrase"

</~~syntaxhighlight~~>

</pre>

'''Compatible and Secure'''

<~~syntaxhighlight lang="shell"~~>

<pre>

ssh-keygen -t rsa -b 4096 -C "[email protected]"

</~~syntaxhighlight~~>

</pre>

Follow the prompts to save the key, typically in <code>~/.ssh/id_rsa</code>.

Line 80:

To use your SSH key for connecting to a server, add your public key to the <code>~/.ssh/authorized_keys</code> file on the server:

<~~syntaxhighlight lang="sh"~~>

<pre>

ssh-add ~/.ssh/username_id_ed25519

</~~syntaxhighlight~~>

</pre>

After this, you can log in to the server (remote) with <code>ssh [email protected]</code>. If you are prompted for your PIN, it is the PIN you created when generating your SSH keys.

Line 88:

You may also SSH directly to a server without adding your SSH key to the server’s <code>~/.ssh/authorized_keys</code> file:

<~~syntaxhighlight lang="sh"~~>

<pre>

ssh -i ~/.ssh/username_id_ed25519 username@hostname

</~~syntaxhighlight~~>

</pre>

Line 100:

To use your SSH key with private Git repositories, add the key to your SSH agent and configure the repository URL to use SSH:

<~~syntaxhighlight lang="sh"~~>

<pre>

ssh-add ~/.ssh/username_id_ed25519

git remote set-url origin [email protected]:username/repo.git

</~~syntaxhighlight~~>

</pre>

Line 110:

To sign Git commits with your SSH key, configure Git to use the key:

<~~syntaxhighlight lang="sh"~~>

<pre>

git config --global user.signingkey <your-key-id>

git config --global commit.gpgSign true

</~~syntaxhighlight~~>

</pre>

Line 123:

If you don’t already have a GPG key pair, generate one:

<~~syntaxhighlight lang="sh"~~>

<pre>

gpg --full-generate-key

</~~syntaxhighlight~~>

</pre>

Follow the prompts to create your key pair.

Line 134:

Edit or create the <code>~/.gnupg/gpg-agent.conf</code> file to include the following line:

<~~syntaxhighlight lang="sh"~~>

<pre>

enable-ssh-support

</~~syntaxhighlight~~>

</pre>

Line 143:

Start or reload the GPG agent:

<~~syntaxhighlight lang="sh"~~>

<pre>

gpg-connect-agent updatestartuptty /bye

</~~syntaxhighlight~~>

</pre>

Line 152:

Use the following command to extract the SSH public key from your GPG key:

<~~syntaxhighlight lang="sh"~~>

<pre>

ssh-add -L

</~~syntaxhighlight~~>

</pre>

If the key is not listed, you can add it manually:

<~~syntaxhighlight lang="sh"~~>

<pre>

gpg --export-ssh-key <your-gpg-key-id>

</~~syntaxhighlight~~>

</pre>

Replace <code><your-gpg-key-id></code> with your actual GPG key ID.

Line 174:

Ensure your SSH client is configured to use the GPG agent by adding the following to your <code>~/.bashrc</code> or <code>~/.zshrc</code>:

<~~syntaxhighlight lang="sh"~~>

<pre>

export SSH_AUTH_SOCK=$(gpgconf --list-dirs agent-ssh-socket)

</~~syntaxhighlight~~>

</pre>

Reload your shell configuration:

<~~syntaxhighlight lang="sh"~~>

<pre>

source ~/.bashrc ## or source ~/.zshrc

</~~syntaxhighlight~~>

</pre>

By following these steps, you can use your GPG key for SSH authentication, leveraging the benefits of GPG key management.

Line 194:

Use <code>ssh-agent</code> to manage your keys and avoid entering the passphrase multiple times:

<~~syntaxhighlight lang="sh"~~>

<pre>

eval "$(ssh-agent -s)"

ssh-add ~/.ssh/username_id_ed25519

</~~syntaxhighlight~~>

</pre>

@@ Line 49: / Line 49: @@
 '''Most Secure Keys'''
-<syntaxhighlight lang="shell">
+<pre>
 ssh-keygen -t ssh-ed25519 -C "[email protected]"
-</syntaxhighlight>
+</pre>
 '''Advanced ED25519 Command'''
-<syntaxhighlight lang="shell">
+<pre>
 ssh-keygen -t ed25519 -C "[email protected]" -f ~/.ssh/username_id_ed25519 -N "your_passphrase"
-</syntaxhighlight>
+</pre>
 '''Compatible and Secure'''
-<syntaxhighlight lang="shell">
+<pre>
 ssh-keygen -t rsa -b 4096 -C "[email protected]"
-</syntaxhighlight>
+</pre>
 Follow the prompts to save the key, typically in <code>~/.ssh/id_rsa</code>.
@@ Line 80: / Line 80: @@
 To use your SSH key for connecting to a server, add your public key to the <code>~/.ssh/authorized_keys</code> file on the server:
-<syntaxhighlight lang="sh">
+<pre>
 ssh-add ~/.ssh/username_id_ed25519
-</syntaxhighlight>
+</pre>
 After this, you can log in to the server (remote) with <code>ssh [email protected]</code>. If you are prompted for your PIN, it is the PIN you created when generating your SSH keys.
@@ Line 88: / Line 88: @@
 You may also SSH directly to a server without adding your SSH key to the server’s <code>~/.ssh/authorized_keys</code> file:
-<syntaxhighlight lang="sh">
+<pre>
 ssh -i ~/.ssh/username_id_ed25519 username@hostname
-</syntaxhighlight>
+</pre>
 <span id="using-with-git"></span>
@@ Line 100: / Line 100: @@
 To use your SSH key with private Git repositories, add the key to your SSH agent and configure the repository URL to use SSH:
-<syntaxhighlight lang="sh">
+<pre>
 ssh-add ~/.ssh/username_id_ed25519
 git remote set-url origin [email protected]:username/repo.git
-</syntaxhighlight>
+</pre>
 <span id="using-to-sign-git-commits"></span>
@@ Line 110: / Line 110: @@
 To sign Git commits with your SSH key, configure Git to use the key:
-<syntaxhighlight lang="sh">
+<pre>
 git config --global user.signingkey <your-key-id>
 git config --global commit.gpgSign true
-</syntaxhighlight>
+</pre>
 <span id="using-gpg-keys-for-ssh-authentication"></span>
@@ Line 123: / Line 123: @@
 If you don’t already have a GPG key pair, generate one:
-<syntaxhighlight lang="sh">
+<pre>
 gpg --full-generate-key
-</syntaxhighlight>
+</pre>
 Follow the prompts to create your key pair.
@@ Line 134: / Line 134: @@
 Edit or create the <code>~/.gnupg/gpg-agent.conf</code> file to include the following line:
-<syntaxhighlight lang="sh">
+<pre>
 enable-ssh-support
-</syntaxhighlight>
+</pre>
 <span id="starting-the-gpg-agent"></span>
@@ Line 143: / Line 143: @@
 Start or reload the GPG agent:
-<syntaxhighlight lang="sh">
+<pre>
 gpg-connect-agent updatestartuptty /bye
-</syntaxhighlight>
+</pre>
 <span id="extracting-the-ssh-public-key-from-your-gpg-key"></span>
@@ Line 152: / Line 152: @@
 Use the following command to extract the SSH public key from your GPG key:
-<syntaxhighlight lang="sh">
+<pre>
 ssh-add -L
-</syntaxhighlight>
+</pre>
 If the key is not listed, you can add it manually:
-<syntaxhighlight lang="sh">
+<pre>
 gpg --export-ssh-key <your-gpg-key-id>
-</syntaxhighlight>
+</pre>
 Replace <code>&lt;your-gpg-key-id&gt;</code> with your actual GPG key ID.
@@ Line 174: / Line 174: @@
 Ensure your SSH client is configured to use the GPG agent by adding the following to your <code>~/.bashrc</code> or <code>~/.zshrc</code>:
-<syntaxhighlight lang="sh">
+<pre>
 export SSH_AUTH_SOCK=$(gpgconf --list-dirs agent-ssh-socket)
-</syntaxhighlight>
+</pre>
 Reload your shell configuration:
-<syntaxhighlight lang="sh">
+<pre>
 source ~/.bashrc  ## or source ~/.zshrc
-</syntaxhighlight>
+</pre>
 By following these steps, you can use your GPG key for SSH authentication, leveraging the benefits of GPG key management.
@@ Line 194: / Line 194: @@
 Use <code>ssh-agent</code> to manage your keys and avoid entering the passphrase multiple times:
-<syntaxhighlight lang="sh">
+<pre>
 eval "$(ssh-agent -s)"
 ssh-add ~/.ssh/username_id_ed25519
-</syntaxhighlight>
+</pre>
 <span id="keypassxc"></span>