From owner-freebsd-questions@FreeBSD.ORG Sun Oct 10 20:33:28 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E178416A4CE for ; Sun, 10 Oct 2004 20:33:28 +0000 (GMT) Received: from mailhost.reuver.org (fia1-7.dsl.hccnet.nl [62.251.7.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7DB4343D3F for ; Sun, 10 Oct 2004 20:33:28 +0000 (GMT) (envelope-from marcel@de.reuver.org) Received: from localhost (localhost.reuver.local [127.0.0.1]) by mailhost.reuver.local (Postfix) with ESMTP id BC573505C for ; Sun, 10 Oct 2004 22:33:27 +0200 (CEST) Received: from mailhost.reuver.org ([127.0.0.1]) by localhost (mailhost.reuver.local [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 35912-06 for ; Sun, 10 Oct 2004 22:33:27 +0200 (CEST) Received: by mailhost.reuver.local (Postfix, from userid 1001) id 206F2505A; Sun, 10 Oct 2004 22:45:22 +0200 (CEST) Received: from localhost (localhost.reuver.local [127.0.0.1]) by mailhost.reuver.local (Postfix) with ESMTP id DC803505C for ; Sun, 10 Oct 2004 22:28:30 +0200 (CEST) Received: from mailhost.reuver.local ([127.0.0.1]) by localhost (mailhost.reuver.local [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 35897-05 for ; Sun, 10 Oct 2004 22:28:23 +0200 (CEST) Received: from pc10 (unknown [10.0.0.150]) by mailhost.reuver.local (Postfix) with SMTP id CAB99505B for ; Sun, 10 Oct 2004 22:28:23 +0200 (CEST) From: "Marcel de Reuver" To: Date: Sun, 10 Oct 2004 22:28:17 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <20041010192044.11548.qmail@web53301.mail.yahoo.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Importance: Normal X-Virus-Scanned: by Amavisd-new at 62.251.7.1 X-Virus-Scanned: by Amavisd-new at 62.251.7.1 Subject: RE: host-based ssh authentication (no password) not working ... helpneeded X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 10 Oct 2004 20:33:29 -0000 >>>Joe Schmoe wrote: > > I have machines CLIENT and SERVER. > > On SERVER, I set the following options in > /etc/ssh/sshd_config : > > RhostsAuthentication no > RhostsRSAAuthentication yes > > Then I copied the host public key from /etc/ssh on > CLIENT to /etc/ssh/ssh_known_hosts on SERVER - so now > the SERVER has the CLIENTs public key. > > Finally, I added the hostname of CLIENT to > /etc/hosts.equiv on SERVER. Then I HUPped sshd on > SERVER. > > So now I go to CLIENT and run: > > ssh username@SERVER > > and it asks me for a password!! > You have to disable PAM authentication: --- sshd.conf: --- ... # Change to no to disable PAM authentication ChallengeResponseAuthentication no ...