SSH Secure Shell

From OCFwiki

SSH Secure Shell consists of two programs:

• SSH Secure Shell is an SSH client which allows you to securely connect to your shell account on the OCF or other remote systems.
• SSH Secure File Transfer is an SFTP client which allows you to securely upload/download files to/from your OCF account or other remote systems.

Contents 1 Downloading 2 Starting the Applications 2.1 Using SSH Secure Shell 2.1.1 Detailed Instructions 2.2 Using SSH Secure File Transfer Client 2.2.1 Detailed Instructions 3 See Also

Downloading

In the past, registered UC Berkeley students could download SSH Secure Shell / SSH Secure File Transfer from software.berkeley.edu. However, IST has ended active distribution of these products making the following comment:

"The vendors supporting the versions of SSH Secure Shell, CRT, and AbsoluteFTP available on Software Central have discontinued making bug or security fixes for those software products. At this time those products do not meet campus Minimum Security Standards and may increasingly become potential targets for attacks.

IST will therefore end active distribution of SSH Secure Shell, CRT, and AbsoluteFTP to the campus on October 1, 2007."

Starting the Applications

By default, the installation program installs two shortcuts on your desktop: SSH Secure Shell Client and SSH Secure File Transfer Client. Use Secure Shell Client to access your Unix shell account on OCF, and to upload or download files to and from your account, use Secure File Transfer Client.

Those shortcuts, as you may see on the OCF lab's Windows workstations or your own, look like this:

NOTE: For OCF SSH settings, please consult the general SSH documentation.

Using SSH Secure Shell

Computers which run the Unix operating system, like the ones in the OCF, are sometimes called command-line oriented. This means that like an IBM PC clone and unlike a Macintosh, you get the computer to do things by typing the name of the program you want to run to a system prompt. The default prompt on machines in the OCF looks like this:

apocalypse [100]

Note: You SHOULDN'T type "apocalypse [100]"! That is your PROMPT, as in, something that computer shows you to PROMPT you for another command. In addition, apocalypse [100] is an example, your prompt is not always the same thing. The first word is the name of the machine you're logged into; the number is the number of the command you're about to type, which is useful for repeating a command. Some Unix other systems are set up to use "%" as their prompt; the prompt on the OCF acts the same, but gives you a bit more information.

Detailed Instructions

1. Connect to the OCF. Choose "Connect" from the "File" menu.

   

2. Input the settings obtained from our SSH documentation.

   

3. If this is the first time you have connected to ocf using this client, you will be prompted to check the identity of the remote host. At this point, there is no way for the SSH client to determine if the host you are connecting to is actually the host it claims to be. It will provide you with a key fingerprint and asks you if you want to continue. Most people will just click Yes and assume it to be the correct host. The OCF publishes the SSH host keys of all of its systems, so you really should check. It doesn't take that long and you only have to do it once. In this case, the host key page gives the following entry for ocf.berkeley.edu:

   • SSH 2 DSA bubble-babble: xubas-nysib-mynor-vifuk-dypim-samin-pigal-regen-syzyk-mafep-foxyx
   • NOTE: this is the key at the time of this writing. Please check against the SSH host keys page, as the keys may change.
   If the fingerprints match, go ahead and continue and click "Yes" to save the key so you don't have to check later.

   

4. Enter your password when when requested.

   

5. You may be prompted to click "OK". ^[1]

   

6. If this is the first time you have logged in to your OCF shell account, you will see the new user information. You should probably read this information, but if you are in a hurry, you can just page through it until you get to the end. At this point you will be asked whether or not to make your files world-readable. If you aren't sure what to pick, go with unreadable and enter 'u'.

   

7. Once you get a prompt like the one below (or something similar like "apocalypse [1] "), you are now logged-in and may issue commands.

   

Using SSH Secure File Transfer Client

Note the two windows split vertically. The left window is marked Local Name, which are the files on your local computer, and the right window is marked Remote Name, which are files on your account on OCF. The right window will be grayed out if you are not connected to OCF yet.

For various functions, such as navigating through the folders and downloading/uploading files, the simplest method is to right-click on the screen. For example, to navigate through the folders, right-click on any black space on the window. Use Up to move to the parent folder, Home to return to your home folder (where you start when you first log in) and Refresh, if the changes to the folder does not appear immediately.

For operations with files, either right-click on a single file, or make a selection (by click-and-drag, same as in Windows Explorer) and right-click anywhere within the selection. To download the file to your local machine, to the current folder in the left window, select Download. Similarly, to upload a file from your local machine, right click on the file and select Upload, which will put the file in the folder in the right window. In many ways, operations are similar to that of Windows Explorer.

Detailed Instructions

1. Connect to the OCF. Choose "Connect" from the "File" menu.

   

2. Input the settings obtained from our SSH documentation.

   

3. If this is the first time you have connected to ocf using this client, you will be prompted to check the identity of the remote host. At this point, there is no way for the SSH client to determine if the host you are connecting to is actually the host it claims to be. It will provide you with a key fingerprint and asks you if you want to continue. Most people will just click Yes and assume it to be the correct host. The OCF publishes the SSH host keys of all of its systems, so you really should check. It doesn't take that long and you only have to do it once. In this case, the host key page gives the following entry for ocf.berkeley.edu:

   • SSH 2 DSA bubble-babble: xubas-nysib-mynor-vifuk-dypim-samin-pigal-regen-syzyk-mafep-foxyx
   • NOTE: this is the key at the time of this writing. Please check against the SSH host keys page, as the keys may change.
   If the fingerprints match, go ahead and continue and click "Yes" to save the key so you don't have to check later.

   

4. Enter your password when when requested.

   

5. You may be prompted to click "OK". ^[1]

   

6. You are now logged-in and may transfer files.

   

• ^[1] (You can skip step 4 in the future by selecting "Edit"/"Settings" in the file menu, and then selecting "Authentication" on the left under 'Profile Settings'/'Connection', where you can reorder "Keyboard Interactive" after "Password" under the "Authentication methods" list.)

See Also

• SSH