Date: Sat, 10 Feb 2024 17:36:49 +1100 From: Graham Menhennitt <graham@menhennitt.com.au> To: questions@freebsd.org Subject: Re: putty from Windows to FreeBSD 14.0 says "Server refused our key" Message-ID: <ef7e7874-595e-48f0-ac4b-31ee38bd899f@menhennitt.com.au> In-Reply-To: <CAMPTd_ALYFC9AMr26K1poahSHGU3D33EpF%2B1LxkZjhM26hV1Xw@mail.gmail.com> References: <296848ac-9121-4b9b-a514-6da8ed2d3af1@menhennitt.com.au> <CAMPTd_ALYFC9AMr26K1poahSHGU3D33EpF%2B1LxkZjhM26hV1Xw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --]
Thanks Walter. Working now after upgrade to Putty 0.80.
Thanks,
Graham
On 10/02/2024 5:28 pm, Walter Parker wrote:
> I’d have to go look, but the most recent versions of openSSH got rid
> of some of older signature algorithms from the default configuration.
> FreeBSD picked up those new changes. Depending on which version of 13
> you have, it might have an older version of openSSH that still has RSA
> in the default configuration.
>
>
> Walter
>
> The greatest dangers to liberty lurk in insidious encroachment by
> men of zeal, well-meaning but without understanding. -- Justice Louis
> D. Brandeis
>
>
> On Fri, Feb 9, 2024 at 10:04 PM Graham Menhennitt
> <graham@menhennitt.com.au> wrote:
>
> Hello list,
>
> I have a box that I recently upgraded to FreeBSD 14.0. It all
> appears to
> be working ok except for one thing. When I attempt to use Putty on
> Windows to connect to it using SSH, I get an error "Server refused
> our
> key" and it drops back to password authentication. I have not
> modified
> sshd_config from the default.
>
> I've used this same key for many years from Putty and from other
> FreeBSD
> boxes. It still works successfully from FreeBSD 13 to FreeBSD 14, but
> not from Putty to FreeBSD 14.
>
> In auth.log on the FreeBSD 14 box, I can see that it says
> "userauth_pubkey: signature algorithm ssh-rsa not in
> PubkeyAcceptedAlgorithms [preauth]". So, I guess that I could fix
> this
> by modifying sshd_config, but I don't understand why it works from
> FreeBSD 13 but not Putty.
>
> Something that may be related (but I'm not sure). When I use password
> authentication from Putty, it appears that it doesn't read my
> .bashrc.
> When I login from FreeBSD 13, it does read .bashrc.
>
> Does anybody have any clues, please.
>
> Thanks in advance,
>
> Graham
>
>
>
[-- Attachment #2 --]
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Thanks Walter. Working now after upgrade to Putty 0.80.</p>
<p>Thanks,</p>
<p> Graham<br>
</p>
<div class="moz-cite-prefix">On 10/02/2024 5:28 pm, Walter Parker
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:CAMPTd_ALYFC9AMr26K1poahSHGU3D33EpF+1LxkZjhM26hV1Xw@mail.gmail.com">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div dir="auto">I’d have to go look, but the most recent versions
of openSSH got rid of some of older signature algorithms from
the default configuration. FreeBSD picked up those new changes.
Depending on which version of 13 you have, it might have an
older version of openSSH that still has RSA in the default
configuration.</div>
<div dir="auto"><br>
</div>
<div dir="auto"><br>
</div>
<div dir="auto">Walter<br clear="all">
<br clear="all">
<div dir="auto">
<div dir="ltr" class="gmail_signature"
data-smartmail="gmail_signature"><span
style="font-family:arial,sans-serif;font-size:13px;border-collapse:collapse;color:rgb(136,136,136)">The
greatest dangers to liberty lurk in insidious encroachment
by men of zeal, well-meaning but without understanding.
-- Justice Louis D. Brandeis</span></div>
</div>
</div>
<div><br>
</div>
<div><br>
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Fri, Feb 9, 2024 at
10:04 PM Graham Menhennitt <<a
href="mailto:graham@menhennitt.com.au"
moz-do-not-send="true" class="moz-txt-link-freetext">graham@menhennitt.com.au</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote"
style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hello
list,<br>
<br>
I have a box that I recently upgraded to FreeBSD 14.0. It
all appears to <br>
be working ok except for one thing. When I attempt to use
Putty on <br>
Windows to connect to it using SSH, I get an error "Server
refused our <br>
key" and it drops back to password authentication. I have
not modified <br>
sshd_config from the default.<br>
<br>
I've used this same key for many years from Putty and from
other FreeBSD <br>
boxes. It still works successfully from FreeBSD 13 to
FreeBSD 14, but <br>
not from Putty to FreeBSD 14.<br>
<br>
In auth.log on the FreeBSD 14 box, I can see that it says <br>
"userauth_pubkey: signature algorithm ssh-rsa not in <br>
PubkeyAcceptedAlgorithms [preauth]". So, I guess that I
could fix this <br>
by modifying sshd_config, but I don't understand why it
works from <br>
FreeBSD 13 but not Putty.<br>
<br>
Something that may be related (but I'm not sure). When I use
password <br>
authentication from Putty, it appears that it doesn't read
my .bashrc. <br>
When I login from FreeBSD 13, it does read .bashrc.<br>
<br>
Does anybody have any clues, please.<br>
<br>
Thanks in advance,<br>
<br>
Graham<br>
<br>
<br>
<br>
</blockquote>
</div>
</div>
</blockquote>
</body>
</html>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ef7e7874-595e-48f0-ac4b-31ee38bd899f>