From owner-freebsd-stable  Sat Jun  9 14:38:45 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from poontang.schulte.org (poontang.schulte.org [209.134.156.197])
	by hub.freebsd.org (Postfix) with ESMTP id A3F7D37B405
	for <stable@FreeBSD.ORG>; Sat,  9 Jun 2001 14:38:41 -0700 (PDT)
	(envelope-from christopher@schulte.org)
Received: from tarmap.schulte.org (tarmap.schulte.org [209.134.156.198])
	by poontang.schulte.org (8.12.0.Beta10/8.12.0.Beta10) with ESMTP id f59LcSQO007145;
	Sat, 9 Jun 2001 16:38:28 -0500 (CDT)
Message-Id: <5.1.0.14.0.20010609161831.0256eec0@pop.schulte.org>
X-Sender: schulte@pop.schulte.org
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Sat, 09 Jun 2001 16:37:19 -0500
To: Henk Wevers <henk@home.cg.nu>, <stable@FreeBSD.ORG>
From: Christopher Schulte <christopher@schulte.org>
Subject: Re: ssh RSA login faild! with keys HELP
In-Reply-To: <Pine.BSF.4.31.0106091954470.19596-100000@home.cg.nu>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG



>Doesn't help enough.  The problem appears to be that if you don't use
>password auth, then no pam module gets loaded.  Then when setcred is called
>the dispatch fails.

This exact issue has been discussed as of June 8th.  Check the archives 
before posting.

http://docs.freebsd.org/mail/current/freebsd-stable.html
http://www.freebsd.org/search/search.html#mailinglists

Seems to be a problem with recent changes to openssh in RELENG_4, which 
hasn't been fixed, yet(?)

BTW: This is why I love the new RELENG_4_3. ;p  The only thing I might 
suggest is offering 'critical *system* updates' rather than just 'critical 
security updates' via RELENG_4_x patch branch.  But I know it's a sticky 
issue, and don't want to open this delicate can of worms again. :->

At 07:57 PM 6/9/2001 +0200, Henk Wevers wrote:
>Hi,
>
>After a make world
>FreeBSD cg.nu 4.3-STABLE FreeBSD 4.3-STABLE #0: Fri Jun  8 21:54:05 CEST
>2001     root@cg.nu:/usr/obj/usr/src/sys/BLAAT  i386
>
>I could not login anymore with private keys in the ~/.ssh/authorized_keys.
>
>Jun  9 19:56:34 f sshd[1569]: Accepted rsa for ROOT from 10.10.1.1 port
>1002
>Jun  9 19:56:34 f sshd[1569]: fatal: PAM setcred failed[6]: Permission
>denied
>
>Please HELP.
>
>
>Henk Wevers

--
Christopher Schulte
Finger for PGP key, or for UNIX impaired:
http://noc.schulte.org/cgi-bin/noc/finger.cgi


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message