Re: Key-based Authentication

Fri, 01 Jun 2007 10:17:00 -0700 


Never mind. Got it: I hadn't chmod 700'd ~/.ssh.

Richard Heck wrote:

Bo Peng wrote:

On 6/1/07, Richard Heck <[EMAIL PROTECTED]> wrote:

Does key-based authentication work on aussie.lyx.org? I've updated my
public key, etc, but it still doesn't seem to be working.

Forgot to chmod 600?
No, did that. And if I copy the authorized_keys to another server (frege.brown.edu) and use it, I can log in no problem. 

Here's some relevant info:
[EMAIL PROTECTED] .ssh]$ ssh aussie.lyx.org
[EMAIL PROTECTED]'s password:
Last login: Fri Jun 1 18:55:58 2007 from c-24-60-194-112.hsd1.ma.comcast.net 
[EMAIL PROTECTED] ~]$ ll .ssh
total 40
-r--------  2 rgheck rgheck 1002 Jun  1 18:57 authorized_keys
-r--------  2 rgheck rgheck 1002 Jun  1 18:57 authorized_keys2
-r--------  1 rgheck rgheck  605 Jun  1 18:56 id_dsa.pub
-r--------  1 rgheck rgheck  397 Jun  1 18:56 id_rsa.pub
-rw-r--r--  1 rgheck rgheck  408 Jun  1 19:00 known_hosts
[EMAIL PROTECTED] ~]$ cat .ssh/authorized_keys
ssh-dss AAAAB3NzaC1kc3MAAACBAOPzp19ScnRbJeqPYr69MXnpm4OZHzKiMdKVDFjM8AJ/8/tlq4Jj7I3Ysk7eBTuNzCecvkPb8dFw+Eub+HvFK2zuIkxW3pZCo/Ouf9DLyf9gU5ul8fwvlDCEagq1+oIWd78Ocq2+QZhrpr/YoRSg9Q9l5pA0NDxvdAlM6bHMwVAfAAAAFQDqudhY8xHAlKZQS70+yiNHMfjb6wAAAIAo3LBfYvnXQZz5YisQi8erazjgMgYOfISI1BGP1etp8Y61KPx6UeCiHVxtP/XCC9o+0gtHVe1jwmOk4Cjb/IfQ9NMrbDX1vIYxZXs2MJuVCOXJ4DdYRzQwIbH2wSDsgscXNyEktqRFDjuqIoZHPfBN1w3NRwcDMq0hy6vp93VQeAAAAIA4+eUQmkqtpbQO2GybKDPKUt/E2fagH7GPpaVwuhXrYGmSQNb69J5qEke5uB+MrLOC1ZIxRUItHBbHS0FWGmddO178Ii7lN7TolrSaoAYciSZAkak9DJv3GeLR5yHT64oxF27Kbs+uSx0zeyQ3sWYtNIetfYGv1t1n39DGhjlPmQ== [EMAIL PROTECTED] ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA2X92C/6UncH5LvpXu6qaH8PCE7DuA4nzFTRg1KA5Yu8yZ4/cbAlMcn8zC8NNW9h8IbT9+Oyg+U4QsTAUTP6yAQuYshRHrWmUb8m2NgVpEOH4J3iQH9SXSAcDMrrTeehULwKN8xojJAtQ7RcNduU5wfO/cfW6IcDyJRcYBQmZhFQfVTovMLhrbb//QvYuWHaepp0AZ83G0GHKf0eKY/ILky3B22gA8xgDRl7ZODc69N8+sI5dNK6/PVsh+DkK7ueVJwbyaRNx2H6py4RED5js/yQls1AWrmRNAJjqu+qNrXZlfdcY5FyLh8fiKSZ6m61hhefMuXxSPiewln3/8Ko5bQ== [EMAIL PROTECTED] 
[EMAIL PROTECTED] ~]$ exit
logout
Connection to aussie.lyx.org closed.
[EMAIL PROTECTED] .ssh]$ ssh -v aussie.lyx.org
OpenSSH_4.3p2, OpenSSL 0.9.8b 04 May 2006
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to aussie.lyx.org [62.70.27.115] port 22.
debug1: Connection established.
debug1: identity file /home/rgheck/.ssh/identity type 0
debug1: identity file /home/rgheck/.ssh/id_rsa type 1
debug1: identity file /home/rgheck/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.2
debug1: match: OpenSSH_4.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.3
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'aussie.lyx.org' is known and matches the RSA host key.
debug1: Found key in /home/rgheck/.ssh/known_hosts:6
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-with-mic,password 
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure.  Minor code may provide more information
No credentials cache found

debug1: Unspecified GSS failure.  Minor code may provide more information
No credentials cache found

debug1: Unspecified GSS failure.  Minor code may provide more information
No credentials cache found

debug1: Next authentication method: publickey
debug1: Offering public key: /home/rgheck/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-with-mic,password 
debug1: Offering public key: /home/rgheck/.ssh/id_dsa
debug1: Authentications that can continue: publickey,gssapi-with-mic,password 
debug1: Next authentication method: password
[EMAIL PROTECTED]'s password: Any thoughts? 

Richard





--
==================================================================
Richard G Heck, Jr
Professor of Philosophy
Brown University
http://frege.brown.edu/heck/
==================================================================
Get my public key from http://sks.keyserver.penguin.de
Hash: 0x1DE91F1E66FFBDEC
Learn how to sign your email using Thunderbird and GnuPG at:
http://dudu.dyn.2-h.org/nist/gpg-enigmail-howto

Reply via email to