TNS
VOXPOP
Will JavaScript type annotations kill TypeScript?
The creators of Svelte and Turbo 8 both dropped TS recently saying that "it's not worth it".
Yes: If JavaScript gets type annotations then there's no reason for TypeScript to exist.
0%
No: TypeScript remains the best language for structuring large enterprise applications.
0%
TBD: The existing user base and its corpensource owner means that TypeScript isn’t likely to reach EOL without a putting up a fight.
0%
I hope they both die. I mean, if you really need strong types in the browser then you could leverage WASM and use a real programming language.
0%
I don’t know and I don’t care.
0%
 
Cloud Native Ecosystem Containers Edge Computing Microservices Networking Serverless Storage
Next-Gen Observability: Monitoring and Analytics in Platform Engineering
Sep 12th 2023 4:00am, by Robert Kimani
Is Policy as Code the Cure for Multicloud Config Chaos?
Sep 11th 2023 12:13pm, by Tzvika Shahaf
Unlock Data’s Full Potential with a Mature Analytics Strategy
Sep 8th 2023 10:16am, by Venkat Ramakrishnan
Achieve Cloud Native without Kubernetes
Sep 7th 2023 8:57am, by Rak Siva
Change Data Capture for Real-Time Access to Backend Databases
Sep 5th 2023 8:05am, by Jim Moffitt
Harden Ubuntu Server to Secure Your Container and Other Deployments
Sep 16th 2023 6:00am, by Jack Wallen
Run GUI Applications as Containers with x11docker
Sep 9th 2023 6:00am, by Jack Wallen
Dive: A Simple App for Viewing the Contents of a Docker Image
Sep 2nd 2023 3:00am, by Jack Wallen
Kubernetes Isn't Always the Right Choice
Aug 21st 2023 7:02am, by Rak Siva
Monitor, Control and Debug Docker Containers with WhaleDeck
Aug 19th 2023 7:00am, by Jack Wallen
Edge AI: How to Make the Magic Happen with Kubernetes
Sep 14th 2023 4:00am, by Saad Malik
Cloud to Edge AI with a Mobile Database Platform
Aug 28th 2023 8:42am, by Mark Gamble
Dev News: React Still King, Vercel AI Tools, Netlify Connect
Jun 17th 2023 4:00am, by Loraine Lawson
Creating an IoT Data Pipeline Using InfluxDB and AWS
Jun 5th 2023 10:25am, by Jason Myers
Dell Intros New Edge, Generative AI, Cloud, Zero Trust Prods
May 31st 2023 11:00am, by Chris J. Preimesberger
A Microservices Outcome: Testing Boomed
Sep 15th 2023 11:15am, by Alex Williams
Event-Driven Microservices Offer Flexibility and Real-Time Responsiveness
Sep 13th 2023 10:00am, by Hugh McKee
Britive: Just-in-Time Access across Multiple Clouds
Sep 7th 2023 3:00am, by Susan Hall
7 Steps to Highly Effective Kubernetes Policies
Sep 6th 2023 7:37am, by Wito Delnat
Setting up Multicluster Service Mesh with Rafay CLI
Aug 30th 2023 10:12am, by Pravin Tatti
Performant and Programmable Telco Networking with eBPF
Aug 11th 2023 10:00am, by Bill Mulligan
Create a Samba Share and Use from in a Docker Container
Jul 29th 2023 6:00am, by Jack Wallen
CIOs, Heed On-Premises App and Infrastructure Performance
Jul 5th 2023 1:21pm, by Gregg Ostrowski
Hasura Launches New Data Network for APIs Only
Jun 29th 2023 9:36am, by Chris J. Preimesberger
Unveiling the Future of Application Networking: Trends and Impacts
Jun 28th 2023 11:06am, by Bilgin Ibryam
The Security-First Mindset to Unlocking the AWS Opportunity 
Aug 9th 2023 8:14am, by David Melamed
3 Reasons Why Teams Move Away from AWS Lambda
Jul 18th 2023 10:00am, by Jonathan Michaux
Microsoft Fabric Defragments Analytics, Enters Public Preview
May 23rd 2023 8:00am, by Andrew Brust
Forrester on WebAssembly for Developers: Frontend to Backend
May 17th 2023 6:00am, by Loraine Lawson
Return of the Monolith: Amazon Dumps Microservices for Video Monitoring
May 4th 2023 7:23am, by Joab Jackson
Unlock Data’s Full Potential with a Mature Analytics Strategy
Sep 8th 2023 10:16am, by Venkat Ramakrishnan
Ditching Databases for Apache Kafka as System of Record
Aug 25th 2023 7:53am, by Andreas Evers
A Brief DevOps History: Databases to Infinity and Beyond, Part 2
Aug 16th 2023 7:15am, by Kat Cosgrove and Matty Stratton
How Quantic Improved Developer Experience, Scalability
Aug 14th 2023 6:24am, by Vigyan Kaushik
How Vector Search Can Optimize Retail Trucking Routes
Aug 11th 2023 10:31am, by Aaron Ploetz
AI Frontend Development Software Development TypeScript WebAssembly Cloud Services Data Security
How to Get the Right Vector Embeddings
Sep 18th 2023 6:09am, by
Dev News: A 'Nue' Frontend Dev Tool; Panda and Bun Updates
Sep 16th 2023 4:00am, by
3 Ways to Stop LLM Hallucinations
Sep 15th 2023 10:15am, by
Salesforce Spreads NLP-Enabled Einstein AI over Most of Its Apps
Sep 15th 2023 9:19am, by
Edge AI: How to Make the Magic Happen with Kubernetes
Sep 14th 2023 4:00am, by
Dev News: A 'Nue' Frontend Dev Tool; Panda and Bun Updates
Sep 16th 2023 4:00am, by
Self-Hosted CDEs Preferred to SaaS in Large Orgs, Says Coder
Sep 14th 2023 11:45am, by
Web Dev Platform Netlify Releases Software Development Kit
Sep 14th 2023 8:35am, by
Dedicated IDE for Rust Released by JetBrains
Sep 13th 2023 9:24am, by
How Attackers Bypass Commonly Used Web Application Firewalls
Sep 13th 2023 8:31am, by
Salesforce Spreads NLP-Enabled Einstein AI over Most of Its Apps
Sep 15th 2023 9:19am, by
Python Delights Excel Data Nerds Plus Data Lake Enthusiasts
Sep 15th 2023 8:35am, by
Can WebAssembly Get Its Act Together for a Component Model?
Sep 14th 2023 9:33am, by
Web Dev Platform Netlify Releases Software Development Kit
Sep 14th 2023 8:35am, by
Dedicated IDE for Rust Released by JetBrains
Sep 13th 2023 9:24am, by
Dev News: A 'Nue' Frontend Dev Tool; Panda and Bun Updates
Sep 16th 2023 4:00am, by
Dev News: Svelte 5 vs. VanillaJS and Google’s Project IDX
Aug 12th 2023 8:00am, by
Dev News: Dart Frog Now Stable, Redwood Updates Bundler
Aug 4th 2023 7:00am, by
Dev News: Spotify's TypeScript SDK, Retool Tools, Deno 1.35
Jul 15th 2023 7:00am, by
Quick Tips to Make Your SDK More Maintainable in TypeScript
Jul 5th 2023 10:21am, by
Can WebAssembly Get Its Act Together for a Component Model?
Sep 14th 2023 9:33am, by
WebAssembly Reaches a Cloud Native Milestone
Sep 11th 2023 7:50am, by
Is It too Early to Leverage AI for WebAssembly?
Sep 6th 2023 10:28am, by
Rust and C++ Work Better for WebAssembly
Aug 9th 2023 6:50am, by
Where Does WebAssembly Fit in the Cloud Native World?
Aug 3rd 2023 9:50am, by
Google Continues Expansion of AI in Workspace, Dev Tools
Aug 30th 2023 8:47am, by
Microsoft PowerShell Gallery Littered with Critical Vulnerabilities
Aug 30th 2023 3:00am, by
Simplifying Cluster Connectivity with Istio Service Mesh
Aug 23rd 2023 5:32am, by
How SaaS Companies Can Monetize Generative AI
Aug 18th 2023 10:00am, by
The Architect’s Guide to Thinking about Hybrid/Multicloud
Aug 18th 2023 8:22am, by
How to Get the Right Vector Embeddings
Sep 18th 2023 6:09am, by
Python Delights Excel Data Nerds Plus Data Lake Enthusiasts
Sep 15th 2023 8:35am, by
Web Dev Platform Netlify Releases Software Development Kit
Sep 14th 2023 8:35am, by
Discover the Performance Gain with Retrieval Augmented Generation
Sep 12th 2023 10:00am, by
The Role of SQL in LLM Apps and How Snowflake Uses LangChain
Sep 12th 2023 8:51am, by
Harden Ubuntu Server to Secure Your Container and Other Deployments
Sep 16th 2023 6:00am, by
How to Design Scalable SaaS API Security
Sep 15th 2023 8:50am, by
DevOps, DevSecOps, and SecDevOps Offer Different Advantages
Sep 15th 2023 5:00am, by
What Are CIS Benchmarks in Cloud Security?
Sep 14th 2023 6:51am, by
How Attackers Bypass Commonly Used Web Application Firewalls
Sep 13th 2023 8:31am, by
Platform Engineering Operations CI/CD Tech Life DevOps Kubernetes Observability Service Mesh
Drive Platform Engineering Success with Humanitec and Port
Sep 15th 2023 7:18am, by Zohar Einy and Kaspar Von Grunberg
Demo: Building an Internal Developer Portal with Port
Sep 14th 2023 6:45am, by Heather Joslyn
Platform Engineering: What’s Hype and What’s Not?
Sep 13th 2023 6:43am, by Tommy McClung
How to Create an Internal Developer Portal MVP
Sep 12th 2023 7:22am, by Mor Paz
Next-Gen Observability: Monitoring and Analytics in Platform Engineering
Sep 12th 2023 4:00am, by Robert Kimani
The /Now Page Movement: Publicly Declaring What You Work on
Sep 17th 2023 6:00am, by David Cassel
Harden Ubuntu Server to Secure Your Container and Other Deployments
Sep 16th 2023 6:00am, by Jack Wallen
Drive Platform Engineering Success with Humanitec and Port
Sep 15th 2023 7:18am, by Zohar Einy and Kaspar Von Grunberg
Deploy Multilanguage Apps to Kubernetes with Open Source Korifi
Sep 15th 2023 1:06am, by Sylvain Kalache
Automating Retry for Failed Terraform Launches
Sep 14th 2023 10:53am, by Shira Ben-Dor
Lessons IT Can Steal from Hackers
Aug 31st 2023 3:00am, by Loraine Lawson
3 GitOps Myths Busted 
Aug 2nd 2023 3:00am, by B. Cameron Gain
Terraform Providers and the Rise of Infrastructure as a Service
Jul 31st 2023 10:00am, by Naor Paz
5 Common Developer Self-Service Challenges (and Solutions)
Jul 26th 2023 10:00am, by Derek Ashmore
Continuous Benchmarking eBPF in Rust with Bencher 
Jul 21st 2023 7:36am, by Everett Pompeii
Graydon Hoare Remembers the Early Days of Rust
Sep 10th 2023 6:00am, by David Cassel
Entrepreneurship for Engineers: a Post-Layoff Startup?
Sep 8th 2023 5:00am, by Emily Omier
Open Source Needs Maintainers. But How Can They Get Paid?
Sep 6th 2023 3:00am, by Heather Joslyn
How to Tackle Tool Sprawl Before It Becomes Tool Hell
Aug 31st 2023 6:18am, by Heath Newburn
SRE vs Platform Engineer: Can’t We All Just Get Along?
Aug 30th 2023 7:48am, by Jennifer Riggins
DevOps, DevSecOps, and SecDevOps Offer Different Advantages
Sep 15th 2023 5:00am, by John Ross
How to Create an Internal Developer Portal MVP
Sep 12th 2023 7:22am, by Mor Paz
Is Policy as Code the Cure for Multicloud Config Chaos?
Sep 11th 2023 12:13pm, by Tzvika Shahaf
How Platform Engineering Can Help Keep Cloud Costs in Check
Sep 11th 2023 10:18am, by Pravanjan Choudhury
Getting Started with Infrastructure Monitoring
Sep 11th 2023 7:01am, by Charles Mahler
A Microservices Outcome: Testing Boomed
Sep 15th 2023 11:15am, by Alex Williams
Edge AI: How to Make the Magic Happen with Kubernetes
Sep 14th 2023 4:00am, by Saad Malik
WebAssembly Reaches a Cloud Native Milestone
Sep 11th 2023 7:50am, by B. Cameron Gain
Kubernetes Building Blocks: Nodes, Pods, Clusters
Sep 11th 2023 6:00am, by Robert Kimani
Can ChatGPT Save Collective Kubernetes Troubleshooting?
Sep 8th 2023 7:54am, by Blair Rampling
Top Ways to Reduce Your Observability Costs: Part 2
Sep 12th 2023 9:38am, by Amanda Mitchell
Next-Gen Observability: Monitoring and Analytics in Platform Engineering
Sep 12th 2023 4:00am, by Robert Kimani
Top Ways to Reduce Your Observability Costs: Part 1
Sep 5th 2023 6:44am, by Amanda Mitchell
4 Key Observability Best Practices
Sep 1st 2023 9:11am, by Sophie Kohler
More Lessons from Hackers: How IT Can Do Better
Sep 1st 2023 3:00am, by Loraine Lawson
Kubernetes 1.28 Accommodates the Service Mesh, Sudden Outages
Aug 18th 2023 10:08am, by Joab Jackson
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
How to Create Zero Trust Architecture for Service Mesh
Mar 27th 2023 7:00am, by Joe Fay
Ambient Mesh: Sidestepping the Sidecar
Mar 1st 2023 8:44am, by Jeff Goldman
Linux / Security

Create and Manage SSH Keys for Third-Party Integration

No matter the service, you're going to need to understand and be able to work with SSH key authentication.
May 21st, 2021 10:00am by
Featued image for: Create and Manage SSH Keys for Third-Party Integration
Feature image via Pixabay.

Recently, GitHub made it such that standard username/password login would no longer function for remote logins. In place of that aging form of authentication is Secure Shell keys and access tokens. The SSH key authentication makes it possible for users to clone and work with private repositories (at least those they have access to).

And GitHub isn’t the only service to require SSH key authentication. You might have Linux servers (either in your on-premise data center or from a cloud-hosted service) and the admin has turned off password authentication.

No matter the service, you’re going to need to understand and be able to work with SSH key authentication. I believe it will soon be the case that most services will migrate away from traditional password authentication. That being the case, you won’t have a choice but to work with the likes of SSH keys.

But how?

Although most Linux users are well-versed in the ways of SSH keys, not everyone is. To that end, I want to introduce you to the process of creating and managing SSH keys, so you can be ready to use them for third-party integration.

What Is SSH Key Authentication?

Before we get into the how let’s explain what we’re talking about first. SSH key authentication is a more secure way of authenticating a user to an account. Instead of it employing a username and password, it associates a key pair with a user. That key pair includes a private (id_rsa) and a public key (id_rsa.pub).

The private key remains on a user’s local storage (usually in the ~/.ssh directory) and is not shared with anyone. The public key, however, is shared out to other users, services, and servers.

When a user attempts to log in with an SSH key, the public and private keys are compared. If those keys match, the user is allowed access to the server.

One of the most important issues with this type of authentication is that users never share their private keys. Anyone with that private key could gain access to the account that includes the public key. This is one of the reasons why the id_rsa key has read/write access only for the owner.

With that said, let’s get our fingers dirty with SSH keys.

How to Generate SSH keys

First and foremost, I work with Linux. It’s my primary operating system for everyday usage. I also work with macOS. The good news is that working with SSH is very similar on both systems, as well as Windows. The commands you’ll see below are identical on Linux, macOS, and Windows. And, even better, the SSH client is installed (out of the box) on all three platforms.

So there should be nothing to install.

The first thing you must do is generate your SSH keypair. To do that, log into your machine, open a terminal window, and issue the command:

ssh-keygen

By default, SSH will use RSA as the type of key. If you have a reason to go with one of the other options (dsa, ecdsa, ecdsa-sk, ed25519, or ed25519-sk), you could use the -t option like so:

ssh-keygen -t TYPE

Where TYPE is the type of key to be generated.

During the key creation, you’ll be prompted to type and verify a passphrase for the key. Do not just hit enter for an empty passphrase. Make this password challenging. Even though SSH key pairs are more secure than traditional authentication methods, if you opt to shun a passphrase for the key pair, should anyone snag your private key, they won’t have any trouble accessing the account associated with the key pair.

You might have a reason to generate multiple SSH key pairs. Why? You might want to use a different key pair for different services (such as one for GitHub and one for your Linux data center servers). To do that, you’d just need to give the newly-generated key pair a different name during the creation process (Figure 1).

Figure 1: Giving the new SHH key pair a specific name to be used for GitHub.

With your key pair created, let’s now look at how you can manage it.

How to Use Your SSH Key Pair

The first thing I’ll show you is how to view your public key. This is quite simple. On Linux or macOS, you would simply issue the command:

cat ~/.ssh/id_rsa.pub

This will display a long string of characters, starting with ssh-rsa and ending with USER@HOSTNAME (where USER is your username and HOSTNAME is the hostname of the computer).

You could copy that key and then paste it where ever it needs to be. For example, for GitHub you do the following:

  1. Log into your GitHub account.
  2. Click on your profile image in the upper-right corner.
  3. From the drop-down, select Settings.
  4. In the left navigation, click SSH and GPG keys.
  5. In the resulting window (Figure 2), click New SSH key.

Figure 2: Adding an SSH key to your GitHub account is simple.

Then, give the key a name and paste the contents of id_rsa.pub in the Key section (Figure 3).

Figure 3: Paste the contents of your newly-generated SSH key here.

And then you add the SSH key.

That’s all there is to adding an SSH key to GitHub. At this point, you should now be able to more easily interact with the service. Other services handle this process in a similar fashion, so make sure to find out how to use SSH keys with other cloud- or server-based accounts you use.

But what about copying an SSH public key to one of your many Linux servers? This is even easier. Log in to the computer that houses the SHH keypair, open a terminal, and issue the command:

ssh-copy-id USER@SERVER

Where USER is the remote username and SERVER is either the IP address or domain of the remote server.

Once you’ve copied the public key to the remote server, you can then log in with the command:

ssh USER@SERVER

Where USER is the remote username and SERVER is either the IP address or domain of the remote server.

You will be prompted for the SSH key pair passphrase (not the user password). Upon successful login, you’ll be allowed access to the server. What is interesting, however, is that (until said time as your local keychain drops the cached password), you shouldn’t have to enter the SSH passphrase the next time you log in. This will, of course, depend on the local operating system and how it’s configured to cache passwords. Just don’t be surprised if, the next time you attempt to SSH into the remote machine, you aren’t asked for the passphrase.

That leads us to a very important issue. When you’ve set up SSH key authentication, you mustn’t leave your local machine unattended. Consider what I just mentioned above. With the SSH key passphrase cached, anyone could issue the SSH command to log into the remote server and gain access, without having to worry about a password.

Because of this, you should always lock your desktop when you step away from your desk. Some desktop operating systems will flush that particular cache, upon closing a terminal window or logging out. So make sure to test this before making any assumptions.

Conclusion

And that’s how you create and manage your SSH keys for third-party usage. It’s not challenging, but it might be a new skill you require, to successfully authenticate with any number of services. It won’t be long before most third-party services require the use of SSH key authentication (or something similar), so it’s best to get ahead of the game.

Group Created with Sketch.
SHARE THIS STORY
RELATED STORIES
Ubuntu Pro Tackles the Challenge of Enterprise Open Source Adoption Rust Support Is Being Built into the GNU GCC Compiler Bram Moolenaar, Author of the Open Source Vim Code Editor, Has Died CVE-2020-19909: A Controversial Vulnerability for cURL How to Secure GitHub/GitLab Servers with Legitify
RELATED STORIES
How Red Hat's License Change Is Reinvigorating Enterprise Linux Distros What eBPF Means for Container Threat Detection Ubuntu Pro Tackles the Challenge of Enterprise Open Source Adoption Performant and Programmable Telco Networking with eBPF AWS Open Sources Security Tools
THE NEW STACK UPDATE A newsletter digest of the week’s most important stories & analyses.