Date: Tue, 21 Jan 2003 16:01:40 -0600 From: Bob Willcox <bob@immure.com> To: questions list <freebsd-questions@freebsd.org> Subject: ssh with public keys and no prompts...I can't get it to work! Message-ID: <20030121220140.GA91874@luke.immure.com>
next in thread | raw e-mail | index | archive | help
I am trying (in vain so far) to get ssh to allow me to connect using public keys and without any prompts (I need this for a software distribuiton/configuration package I need to run). I have had this work before, but now it seems to escape me. To simplify my testing my client and server system is the same (i.e., I'm attempting to use ssh to login to the local system). I have built the identity keys for rsa1, rsa, and dsa and placed their public keys in my authorized_keys file. The system is running 4.7-STABLE from about two weeks ago. I have included a listing of my .ssh subdirectory and the debug output from both ssh and sshd below. It appears that ssh is failing to read the private rsa key, and then prompting me for my passphrase. Any help/enlightenment on this would be greatly appreciated! Thanks, Bob My .ssh subdirectory contents: $ ls -la .ssh total 22 drwxr-xr-x 2 bobl staff 512 Jan 21 15:28 . drwxr-xr-x 3 bobl staff 512 Jan 21 14:13 .. -rw-r--r-- 1 bobl staff 1173 Jan 21 15:29 authorized_keys lrwxr-xr-x 1 bobl staff 15 Jan 21 15:27 authorized_keys2 -> authorized_keys -rw------- 1 bobl staff 744 Jan 21 15:27 id_dsa -rw-r--r-- 1 bobl staff 608 Jan 21 15:27 id_dsa.pub -rw------- 1 bobl staff 951 Jan 21 14:13 id_rsa -rw-r--r-- 1 bobl staff 228 Jan 21 14:13 id_rsa.pub -rw------- 1 bobl staff 533 Jan 21 15:28 identity -rw-r--r-- 1 bobl staff 337 Jan 21 15:28 identity.pub -rw-r--r-- 1 bobl staff 935 Jan 21 14:28 known_hosts The sshd debug output (just the last 20 or so lines of it): debug2: input_userauth_request: setting up authctxt for bobl debug1: Starting up PAM with username "bobl" debug1: PAM setting rhost to "boba.vieo.com" debug2: input_userauth_request: try method none Failed none for bobl from 10.1.0.20 port 4480 ssh2 debug1: userauth-request for user bobl service ssh-connection method publickey debug1: attempt 1 failures 1 debug2: input_userauth_request: try method publickey debug1: test whether pkalg/pkblob are acceptable debug1: trying public key file /usr/home/bobl/.ssh/authorized_keys debug3: secure_filename: checking '/usr/home/bobl/.ssh' debug3: secure_filename: checking '/usr/home/bobl' debug3: secure_filename: terminating check at '/usr/home/bobl' debug1: matching key found: file /usr/home/bobl/.ssh/authorized_keys, line 1 Found matching RSA key: 55:61:ed:da:c6:7d:53:d0:74:d3:d8:1c:73:82:d3:1a debug1: restore_uid debug2: userauth_pubkey: authenticated 0 pkalg ssh-rsa Postponed publickey for bobl from 10.1.0.20 port 4480 ssh2 The ssh debug output (again, just the last few interesting lines): debug1: authentications that can continue: publickey,password,keyboard-interactive debug3: start over, passed a different list publickey,password,keyboard-interactive debug3: preferred publickey,keyboard-interactive,password debug3: authmethod_lookup publickey debug3: remaining preferred: keyboard-interactive,password debug3: authmethod_is_enabled publickey debug1: next auth method to try is publickey debug1: try pubkey: /usr/home/bobl/.ssh/id_rsa debug3: send_pubkey_test debug2: we sent a publickey packet, wait for reply debug1: input_userauth_pk_ok: pkalg ssh-rsa blen 149 lastkey 0x8069350 hint 0 debug2: input_userauth_pk_ok: fp 55:61:ed:da:c6:7d:53:d0:74:d3:d8:1c:73:82:d3:1a debug3: sign_and_send_pubkey debug1: PEM_read_PrivateKey failed debug1: read PEM private key done: type <unknown> Enter passphrase for key '/usr/home/bobl/.ssh/id_rsa': -- Bob Willcox We seem to have forgotten the simple truth that bob@vieo.com reason is never perfect. Only non-sense attains Austin, TX perfection. -- Poul Henningsen [1894-1967] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030121220140.GA91874>