Hi All, For some reason my Gentoo rsa public key is not liked by 3.9p1-11.el4_7 sshd, which is running on a CentOS server. On the Gentoo machine I am running net-misc/openssh-5.1_p1-r1. This is what it shows: =================================================== debug1: fd 3 clearing O_NONBLOCK debug1: Connection established. debug3: timeout: 14835 ms remain after connect debug3: Not a RSA1 key file /home/michael/.ssh/id_rsa. debug2: key_type_from_name: unknown key type '-----BEGIN' debug3: key_read: missing keytype debug2: key_type_from_name: unknown key type 'Proc-Type:' debug3: key_read: missing keytype debug2: key_type_from_name: unknown key type 'DEK-Info:' debug3: key_read: missing keytype debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug3: key_read: missing whitespace debug2: key_type_from_name: unknown key type '-----END' debug3: key_read: missing keytype debug1: identity file /home/michael/.ssh/id_rsa type 1 debug1: Remote protocol version 2.0, remote software version OpenSSH_3.9p1 debug1: match: OpenSSH_3.9p1 pat OpenSSH_3.* debug1: Remote is NON-HPN aware debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.1p1-hpn13v5 .... debug3: check_host_in_hostfile: filename /home/michael/.ssh/known_hosts debug3: check_host_in_hostfile: match line 17 debug1: Host '[XXXXXXXXXX]:22' is known and matches the RSA host key. debug1: Found key in /home/michael/.ssh/known_hosts:17 debug2: bits set: 496/1024 debug1: ssh_rsa_verify: signature correct debug2: kex_derive_keys debug2: set_newkeys: mode 1 debug1: Enabling compression at level 6. debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug2: set_newkeys: mode 0 debug1: SSH2_MSG_NEWKEYS received debug1: SSH2_MSG_SERVICE_REQUEST sent debug2: service_accept: ssh-userauth debug1: SSH2_MSG_SERVICE_ACCEPT received debug2: key: /home/michael/.ssh/id_rsa (XXXXXXXX) debug1: Authentications that can continue: publickey,gssapi-with-mic,password,keyboard-interactive debug3: start over, passed a different list publickey,gssapi-with-mic,password,keyboard-interactive debug3: preferred publickey debug3: authmethod_lookup publickey debug3: remaining preferred: debug1: No more authentication methods to try. Permission denied (publickey,gssapi-with-mic,password,keyboard-interactive). ===================================================
The above response and bail out without authenticating happens when I pass the option: -o PreferredAuthentications=publickey Otherwise, it goes through the above responses and then asks for the user's passwd. I have had no problems to date using pubkey on other Gentoo, Ubuntu and FreeBSD machines. Can you see anything that makes sense in the above CentOS response? Is there a fix? -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
