From owner-freebsd-security  Wed Mar  6  8:45: 3 2002
Delivered-To: freebsd-security@freebsd.org
Received: from straylight.ringlet.net (discworld.nanolink.com [217.75.135.248])
	by hub.freebsd.org (Postfix) with SMTP id 19EE937B405
	for <security@freebsd.org>; Wed,  6 Mar 2002 08:44:53 -0800 (PST)
Received: (qmail 72947 invoked by uid 1000); 6 Mar 2002 16:45:09 -0000
Date: Wed, 6 Mar 2002 18:45:09 +0200
From: Peter Pentchev <roam@ringlet.net>
To: Michael Lucas <mwlucas@blackhelicopters.org>
Cc: security@freebsd.org
Subject: Re: ssh keys not working?
Message-ID: <20020306184509.C14052@straylight.oblivion.bg>
Mail-Followup-To: Michael Lucas <mwlucas@blackhelicopters.org>,
	security@freebsd.org
References: <20020306110730.A720@blackhelicopters.org> <20020306161335.GC57440@submonkey.net> <20020306112052.A847@blackhelicopters.org>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="lCAWRPmW1mITcIfM"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20020306112052.A847@blackhelicopters.org>; from mwlucas@blackhelicopters.org on Wed, Mar 06, 2002 at 11:20:52AM -0500
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


--lCAWRPmW1mITcIfM
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Mar 06, 2002 at 11:20:52AM -0500, Michael Lucas wrote:
> On Wed, Mar 06, 2002 at 04:13:35PM +0000, Ceri wrote:
> > You did remember to run ssh-add ?
>=20
> Yep, I'm dumb but not that dumb.  :-)
>=20
> > Other than that, check that your Protocol line is 1,2 instead of 2,1.
>=20
>=20
> Aha!  Life just got much better, thank you!
>=20
> Now to go fix my bonehead mistake in the FDP...

If the problem was that SSH was using protocol 2 instead of 1, and you
only had an SSHv1 key, please note that all the machines in the FreeBSD
cluster accept SSHv2 keys now, too :)  I personally prefer to go with v2
anywhere I can, so I just generated a v2 key (ssh-keygen -t dsa) and
copied the public key over to freefall:.ssh/authorized_keys2.

G'luck,
Peter

--=20
Peter Pentchev	roam@ringlet.net	roam@FreeBSD.org
PGP key:	http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint	FDBA FD79 C26F 3C51 C95E  DF9E ED18 B68D 1619 4553
This sentence would be seven words long if it were six words shorter.

--lCAWRPmW1mITcIfM
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iEYEARECAAYFAjyGR5UACgkQ7Ri2jRYZRVPCUgCfXZf12quR8nsQQG2ACidLl5ca
uYgAnj4U6jAqAHeOvRM7n7lCuFw4uQMg
=v7Bo
-----END PGP SIGNATURE-----

--lCAWRPmW1mITcIfM--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message