From owner-freebsd-questions@FreeBSD.ORG Thu Oct 28 20:49:33 2010 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 15774106566B for ; Thu, 28 Oct 2010 20:49:33 +0000 (UTC) (envelope-from peter.piggybox@virgin.net) Received: from queueout02-winn.ispmail.ntl.com (queueout02-winn.ispmail.ntl.com [81.103.221.56]) by mx1.freebsd.org (Postfix) with ESMTP id 80E858FC12 for ; Thu, 28 Oct 2010 20:49:31 +0000 (UTC) Received: from know-smtpout-4.server.virginmedia.net ([62.254.123.3]) by mtaout02-winn.ispmail.ntl.com (InterMail vM.7.08.04.00 201-2186-134-20080326) with ESMTP id <20101028193954.BTMW7723.mtaout02-winn.ispmail.ntl.com@know-smtpout-4.server.virginmedia.net> for ; Thu, 28 Oct 2010 20:39:54 +0100 Received: from [81.97.73.108] (helo=laptop.piggybox) by know-smtpout-4.server.virginmedia.net with esmtp (Exim 4.63) (envelope-from ) id 1PBYKI-0003Fs-6z for questions@freebsd.org; Thu, 28 Oct 2010 20:39:54 +0100 Received: from laptop.piggybox (localhost.piggybox [127.0.0.1]) by laptop.piggybox (8.14.4/8.14.3) with ESMTP id o9SJdsIb006964 for ; Thu, 28 Oct 2010 20:39:54 +0100 (BST) (envelope-from peter@laptop.piggybox) Received: (from peter@localhost) by laptop.piggybox (8.14.4/8.14.4/Submit) id o9SJdsBp006963 for questions@freebsd.org; Thu, 28 Oct 2010 20:39:54 +0100 (BST) (envelope-from peter) Date: Thu, 28 Oct 2010 20:39:53 +0100 From: Peter Harrison To: questions@freebsd.org Message-ID: <20101028193953.GA6922@laptop.piggybox> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.3i X-Cloudmark-Analysis: v=1.1 cv=DhNl2YeytwJssBBGe49HJX82LNDFEEVkpVB34RXKaPo= c=1 sm=0 a=D3rwWlU38pcA:10 a=kj9zAlcOel0A:10 a=mMm05NxeEUxqoHx6XcgA:9 a=Dbe4hRHUfJjxiK9Cepw6XlNO6EAA:4 a=CjuIK1q_8ugA:10 a=HpAAvcLHHh0Zw7uRqdWCyQ==:117 X-Mailman-Approved-At: Thu, 28 Oct 2010 20:58:43 +0000 Cc: Subject: ssh key authentication problem... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Oct 2010 20:49:33 -0000 Can anyone help me debug an ssh key-based authentication problem? I have an 8.1-R server running sshd, with one user account. On the server, I've used ssh-keygen to generate id_rsa and id_rsa.pub. On my laptop I then pulled the id_rsa.pub file over and: % cat id_rsa.pub >> .ssh/authorized_keys Now I try to login from the laptop (also 8.1-R) to the server. It pauses for a second and presents me with a 'Password:' prompt, so obviously the key authentication isn't working. He's a debugging chunk from sshd run with '-ddd' flags: debug1: PAM: initializing for "peter" debug1: userauth-request for user peter service ssh-connection method publickey debug1: attempt 1 failures 0 debug2: input_userauth_request: try method publickey debug1: test whether pkalg/pkblob are acceptable debug3: mm_key_allowed entering debug3: mm_request_send entering: type 20 debug3: mm_key_allowed: waiting for MONITOR_ANS_KEYALLOWED debug3: mm_request_receive_expect entering: type 21 debug3: mm_request_receive entering debug1: PAM: setting PAM_RHOST to "192.168.1.4" debug2: monitor_read: 45 used once, disabling now debug3: mm_request_receive entering debug3: monitor_read: checking request 3 debug3: mm_answer_authserv: service=ssh-connection, style= debug2: monitor_read: 3 used once, disabling now debug3: mm_request_receive entering debug3: monitor_read: checking request 20 debug3: mm_answer_keyallowed entering debug3: mm_answer_keyallowed: key_from_blob: 0x286067c0 debug1: trying public key file /home/peter/.ssh/authorized_keys debug1: fd 4 clearing O_NONBLOCK debug3: secure_filename: checking '/usr/home/peter/.ssh' debug3: secure_filename: checking '/usr/home/peter' debug3: secure_filename: terminating check at '/usr/home/peter' debug2: key not found debug1: trying public key file /home/peter/.ssh/authorized_keys2 Failed publickey for peter from 192.168.1.4 port 43046 ssh2 debug3: mm_answer_keyallowed: key 0x286067c0 is not allowed debug3: mm_request_send entering: type 21 debug2: userauth_pubkey: authenticated 0 pkalg ssh-rsa debug3: mm_request_receive entering debug1: userauth-request for user peter service ssh-connection method keyboard-interactive debug1: attempt 2 failures 1 debug2: input_userauth_request: try method keyboard-interactive debug1: keyboard-interactive devs Anyone suggest what I'm doing wrong? TIA. Peter Harrison.