Trouble with key based authentication
Dan Lund
situationalawareness at gmail.com
Thu Oct 4 08:30:56 MST 2007
Check permissions... I have ran into times when Somehow(tm)
permissions have changed on the ~/.ssh directory or the contents, and
SSH is very picky about security in that respect.
On 10/3/07, Bryan O'Neal <BONeal at cornerstonehome.com> wrote:
> Agreed, but neither sides .ssh files have changed. I am becoming
> tempted to just regenerate the keys on both sides and copy the public
> key over and be done with it. But on that note, last time I did this I
> did both RSA and DSA, but I can not remember my reasoning for not just
> doing RSA. Any one have any thoughts?
>
> -----Original Message-----
> From: plug-discuss-bounces at lists.plug.phoenix.az.us
> [mailto:plug-discuss-bounces at lists.plug.phoenix.az.us] On Behalf Of
> Darrin Chandler
> Sent: Wednesday, October 03, 2007 12:05 PM
> To: Main PLUG discussion list
> Subject: Re: Trouble with key based authentication
>
> Bryan,
>
> On Wed, Oct 03, 2007 at 11:45:51AM -0700, Bryan O'Neal wrote:
> > debug1: Authentications that can continue:
> > publickey,gssapi-with-mic,password
> > debug1: Next authentication method: publickey
> > debug1: Offering public key: /backupuser/.ssh/id_rsa
> > debug1: Authentications that can continue:
> > publickey,gssapi-with-mic,password
> > debug1: Offering public key: /backupuser/.ssh/id_dsa
> > debug1: Authentications that can continue:
> > publickey,gssapi-with-mic,password
> > debug1: Next authentication method: password
> > remoteuser at remote.cornerstonehome.com's password:
>
> It looks very much like the public key (id_rsa.pub|id_dsa.pub) is not in
> the ~remoteuser/.ssh/authorized_keys file. Since it used to work,
> something must have changed somewhere. Have a look at the .pub file(s)
> and then examine the remote's authorized_keys file and compare. Your -v
> output looks like everything is fine except that it doesn't like the
> key.
>
> --
> Darrin Chandler | Phoenix BSD User Group | MetaBUG
> dwchandler at stilyagin.com | http://phxbug.org/ |
> http://metabug.org/
> http://www.stilyagin.com/ | Daemons in the Desert | Global BUG
> Federation
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
--
"Courage is like love; it must have hope to nourish it."
-Napoleon Bonaparte
More information about the PLUG-discuss
mailing list