Ping a Specific Port

Question

Greg Dougherty

Asked: 2018-01-27 08:37:34 +0800 CST2018-01-27 08:37:34 +0800 CST 2018-01-27 08:37:34 +0800 CST

Is there a way to set up passwordless / passphraseless ssh so can only come from one client?

772

I know how to set up passwordless / passphraseless ssh. But my understanding is that setting it up that way means that if someone get ahold of the id_dsa file, they can then log in from any machine.

Is it possible to set up, on server X, that Y is an "authorized key" only when it's coming from client Z?

1 Answers

Voted

Artem Budaev · Answer 1 · 2018-01-27T08:46:12+08:00

Artem Budaev

2018-01-27T08:46:12+08:002018-01-27T08:46:12+08:00

You may restrict access by IP for every authorized_key. Just add the following line into authorized_keys on X something like:

from="Z_IP" Y_id_rsa.pub

In this case server X will be accessible via SSH using Y's key only when accessing from Z's IP-address.

Also, you may add additional parameters. Here is examples: https://debian-administration.org/article/685/Restricting_SSH_logins_to_particular_IP_addresses

3

Is there a way to set up passwordless / passphraseless ssh so can only come from one client?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?