Veraplus port 22 security

Is there any way that I can install my public key and disable port 22 password login on my Veraplus so I can use password-less ssh login?

Regards.

Veraplus, 7.31.

Put your public key in /etc/dropbear/authorized_keys (you can create it if it doesn’t exist, be sure to set your perms correctly).

1 Like

Thanks rigpapa. 3 questions

  1. Will this survive reboots and power cycles?
  2. What are the permissions needed to be set?
  3. How do I disable ssh password logins?

Cheers.

yes

I use 0640 (user root group root)

If you mean how do you log in without your password, you would typically just specify the key when making the connection to the Vera (e.g. in linux, ssh -i /path/to/privatekey root@veraip). Actually disabling password logins and allowing only key-based logins… no idea.

Hmmm…If you cannot disable ssh password logins, that makes it insecure.

Thanks.

Lastly, we need to disable password login for root in Dropbear. To do this, edit the file /etc/default/dropbear and –
edit the line –

DROPBEAR_EXTRA_ARGS=“”

to read –

DROPBEAR_EXTRA_ARGS=“-g”

Not tested, but makes sense

C

Yeah, but you’re talking about a device that has an unrestricted user interface that itself contains the ability to run Lua with root privileges (e.g. go to Apps > Develop apps > Test Luup code and enter/run os.execute("/sbin/poweroff") to get an idea of how powerful and unrestrained it is). You can plug the small hole in the dike with your finger, but water is pouring over the top and around the sides.

2 Likes

(post withdrawn by author, will be automatically deleted in 24 hours unless flagged)

1 Like