What's the best accessible SSH setup on Windows these days?
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
@Orinks I still use PuTTY even now.
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
@Orinks Only thing I find to be a pain in the rear end is the keygen, but other than that works pretty well.
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
-
@Orinks Only thing I find to be a pain in the rear end is the keygen, but other than that works pretty well.
@daygar @Orinks I mostly just use Windows built-in implementation of OpenSSH, because I also use OpenSSH on Mac and Linux, so everything is the same. I just migrate my keys from one platform to another.
Copying publickeys to a new machine is a bit of a pain though. There are some hackey ways to do it with powershell, or you can manually copy keys to the appropriate places on the remote machine, being very careful about it.
puttygen uses random mouse movements to generate keys.
The file format is different between PuTTY and OpenSSH.
-
@daygar @Orinks I mostly just use Windows built-in implementation of OpenSSH, because I also use OpenSSH on Mac and Linux, so everything is the same. I just migrate my keys from one platform to another.
Copying publickeys to a new machine is a bit of a pain though. There are some hackey ways to do it with powershell, or you can manually copy keys to the appropriate places on the remote machine, being very careful about it.
puttygen uses random mouse movements to generate keys.
The file format is different between PuTTY and OpenSSH.
@BorrisInABox @daygar @Orinks And if on Windows, Windows-native ssh is the only one that natively supports fido2 and/or fido2 resident keys, so there's that to consider.
-
-
@daygar @Orinks I mostly just use Windows built-in implementation of OpenSSH, because I also use OpenSSH on Mac and Linux, so everything is the same. I just migrate my keys from one platform to another.
Copying publickeys to a new machine is a bit of a pain though. There are some hackey ways to do it with powershell, or you can manually copy keys to the appropriate places on the remote machine, being very careful about it.
puttygen uses random mouse movements to generate keys.
The file format is different between PuTTY and OpenSSH.
@BorrisInABox @daygar @Orinks I use OpenSSH on Windows but I actually pay for 1password, and 1password supports acting as an SSH agent, which speaks win32 OpenSSH protocol. So that's my keystore. I've also got a bridge process in startup that proxies pageant requests to win32 OpenSSH, so PuTTY also uses 1password. On some websites where it gives you settings to add an SSH key, like GitHub or upcloud's server control panel, down arrow in the public key field in firefox will actually cause 1password to prompt you to generate an ed25519 key! Of course, you do still need the .pub files and ssh config to deal with the 6 key thing. But instead of storing the private keys on disk, passphrase or not, I can just log into something, authorize the key with 1password, and authenticate to my device, which is Windows hello in this case.
-
@BorrisInABox @daygar @Orinks I use OpenSSH on Windows but I actually pay for 1password, and 1password supports acting as an SSH agent, which speaks win32 OpenSSH protocol. So that's my keystore. I've also got a bridge process in startup that proxies pageant requests to win32 OpenSSH, so PuTTY also uses 1password. On some websites where it gives you settings to add an SSH key, like GitHub or upcloud's server control panel, down arrow in the public key field in firefox will actually cause 1password to prompt you to generate an ed25519 key! Of course, you do still need the .pub files and ssh config to deal with the 6 key thing. But instead of storing the private keys on disk, passphrase or not, I can just log into something, authorize the key with 1password, and authenticate to my device, which is Windows hello in this case.
@BorrisInABox @daygar @Orinks I hope at least some other password managers, e.g. bitwarden and its forks, can do something like this, because sticking SSH keys in a manager like that is just beyond convenient when it can do that. And you could tether those to a FIDO2 key too.
-
@BorrisInABox @daygar @Orinks I use OpenSSH on Windows but I actually pay for 1password, and 1password supports acting as an SSH agent, which speaks win32 OpenSSH protocol. So that's my keystore. I've also got a bridge process in startup that proxies pageant requests to win32 OpenSSH, so PuTTY also uses 1password. On some websites where it gives you settings to add an SSH key, like GitHub or upcloud's server control panel, down arrow in the public key field in firefox will actually cause 1password to prompt you to generate an ed25519 key! Of course, you do still need the .pub files and ssh config to deal with the 6 key thing. But instead of storing the private keys on disk, passphrase or not, I can just log into something, authorize the key with 1password, and authenticate to my device, which is Windows hello in this case.
@x0 @BorrisInABox @daygar How is the 1Password client on Windows? Only saw an audio review of it on macOS.
-
@x0 @BorrisInABox @daygar How is the 1Password client on Windows? Only saw an audio review of it on macOS.
@Orinks @x0 @BorrisInABox @daygar I think it's at the same level as bitwarden, although bitwarden is more accessible in my opinion. 1Password has the security key on top of your password on first login, which ads a layer of security to their service. I don't think you can tab into a list of your sights with BitWarden but you can do such a thing with 1password.
-
@x0 @BorrisInABox @daygar How is the 1Password client on Windows? Only saw an audio review of it on macOS.
@Orinks @BorrisInABox @daygar Electron. Not terrible, some focus mode for e.g. the tree view, search autocomplete etc. Have to do a fair bit of switching to navigate some of the item detail screens. Best used in firefox really, as apparently its autofill is tetchy in Chrome. It can even scan QR codes right off of 2FA pages to add authenticator apps within the browser extension, if you wanted to also use it as your 2FA app, and then it autofills there too half the time once you put in your password.
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
@Orinks I just use the built-in SSH client on Windows 10/11.
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
@Orinks I have had good success using WSL to SSH into Raspberry Pi and a VPS.
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
@Orinks don't know a tun about it. but I still use putty.
-
@Orinks I have had good success using WSL to SSH into Raspberry Pi and a VPS.
@walkside3 Good to know. Looking at VPS options.
-
@Orinks I have had good success using WSL to SSH into Raspberry Pi and a VPS.
@walkside3 @Orinks Wow, that's a lot for a simple ssh connection. Putty still works. Just run>ssh://place:port
-
@walkside3 @Orinks Wow, that's a lot for a simple ssh connection. Putty still works. Just run>ssh://place:port
@blindndangerous @walkside3 What's a lot? The 1Password thing? fastSM's conversation loading suddenly stopped working.
-
@blindndangerous @walkside3 What's a lot? The 1Password thing? fastSM's conversation loading suddenly stopped working.
@Orinks @walkside3 No, the installing of wsl just to get ssh. Putty will do that with no overhead.
-
@Orinks @walkside3 No, the installing of wsl just to get ssh. Putty will do that with no overhead.
@blindndangerous @Orinks @walkside3 Windows includes an OpenSSH client by default and has for several years now. OpenSSH is the same software you'd be using in WSL, so the Windows version can be used directly unless there are local Linux-specific needs (unlikely).
PuTTY is an option for people who like it. Personally I don't.
TL;DR: just use the ssh command in Windows Terminal or Command Prompt.
-
What's the best accessible SSH setup on Windows these days? I used to use PuTTY back in about 2003 or something messing with shells, but not sure how good it is now. Thinking about a shell again to migrate my website to etc.
@Orinks I SSH into my little Linux machine with CMD, but I'd like to use more conventional selection commands because I have to use NVDA's move-to-focus and set start/finish marker keystrokes to select and copy output, which is annoying if I have to do it a lot.
