If you are using public key authentication (which you want), you need that
turned on, not commented out. This stuff pretty much works out of the box,
but it seems like you've figured out a way to screw it up. Generally
speaking, putting it in a blender and pressing the puree button isn't the
best
On Thu, 20 Apr 2023, Rich Shepard wrote:
Since the only two external servers to which I connect have my public key, I
don't need it locally. Yes?
Not so.
I commented out #PubkeyAuthentication yes on both salmo and caddis; rebooted
both.
From salmo:
$ ssh caddis
ssh: connect to host caddis
On Thu, 20 Apr 2023, Russell Senior wrote:
Without looking it up, passphrase is the encryption that protects the
private key on the client system, so that the super user (or others able to
read files) can't just read/copy your private key.
Russell,
Since the only two external servers to
Without looking it up, passphrase is the encryption that protects the
private key on the client system, so that the super user (or others able to
read files) can't just read/copy your private key. The passphrase never
leaves your machine, or the ssh process that is used to authenticate to the
On Thu, 20 Apr 2023, Russell Senior wrote:
"debug2: we did not send a packet, disable method"
That seems relevant.
Russell,
To me, too. But, does that mean disable passphrase authentification in
/etc/ssh/sshd_config on both machines?
If I do that what does it mean when I login to github or
"debug2: we did not send a packet, disable method"
That seems relevant.
On Thu, Apr 20, 2023, 06:57 Rich Shepard wrote:
> On Wed, 19 Apr 2023, Russell Senior wrote:
>
> > I find it is pretty helpful to read the messages. If the messages are too
> > terse, add verbose or debug flags. Then read
On Wed, 19 Apr 2023, Russell Senior wrote:
I find it is pretty helpful to read the messages. If the messages are too
terse, add verbose or debug flags. Then read what it says.
Is there anything listening on caddis's port n?
Russell,
My apologies; I completely forgot to use the -v option
I find it is pretty helpful to read the messages. If the messages are too
terse, add verbose or debug flags. Then read what it says.
Is there anything listening on caddis's port n?
On Wed, Apr 19, 2023 at 2:56 PM Rich Shepard
wrote:
> On Wed, 19 Apr 2023, Russell Senior wrote:
>
> > So,
On Wed, 19 Apr 2023, Russell Senior wrote:
So, you can use an editor to remove the offending line 2, and you'll be
asked to accept the new hostkey the next time to connect.
Russell,
The authorized_keys on both hosts each contains the public key of the other.
The known_hosts on the laptop
IMO it is best to use ssh-copy-id to transfer your public key.
I have begun using: ssh-keygen -f "/home//.ssh/known_hosts" -R
""
to remove ID's from my local .ssh/known_hosts file.
The advantage of the first is that you don't accidentally copy your private
key.
The advantage of the second is
On Wed, 19 Apr 2023, Russell Senior wrote:
Your client is complaining about the new host key. You need to remove the
old hostkey from your *CLIENT'S* known_hosts file. The message is telling
you what it doesn't like "Offending ED25519 key in
/home/rshepard/.ssh/known_hosts:2".
Russell,
Your client is complaining about the new host key. You need to remove the
old hostkey from your *CLIENT'S* known_hosts file. The message is telling
you what it doesn't like "Offending ED25519 key in
/home/rshepard/.ssh/known_hosts:2".
So, you can use an editor to remove the offending line 2, and
On Wed, 19 Apr 2023, Rich Shepard wrote:
Should salmo's id_ed25519.pub be in caddis' .ssh/authorized_keys?
I think that I found the problem: salmo's id_ed25519.pub has only one line
and it's for a host no longer on the LAN.
So, I'll generate a new keypair for salmo, using the same
On Wed, 19 Apr 2023, Russell Senior wrote:
There is also a config for the server: sshd_config
Oy! I forgot about that. The sshd_config files in both salmo and caddis are
the same and do require passphrase authentification.
On caddis my ssh attempt still fails and I am not certain about which
There is also a config for the server: sshd_config
On Wed, Apr 19, 2023, 13:14 Rich Shepard wrote:
> On Wed, 19 Apr 2023, Paul Heinlein wrote:
>
> > It looks to me like sshd on salmo is configured to accept only public key
> > authentication. It won't take your password.
>
> Paul,
>
> I was
On Wed, 19 Apr 2023, Paul Heinlein wrote:
It looks to me like sshd on salmo is configured to accept only public key
authentication. It won't take your password.
Paul,
I was wrong. When I ssh into github or my website host I need to use my
passphrase.
But, in both salmo's and caddis'
On Wed, 19 Apr 2023, Paul Heinlein wrote:
It looks to me like sshd on salmo is configured to accept only public key
authentication. It won't take your password.
Paul,
I know that, but I'm not offered a prompt for the passphrase and entering it
instead of my password won't work.
If you don't
On Wed, 19 Apr 2023, Rich Shepard wrote:
Generated a key pair and, following the Slackware OpenSSH instructions
tried to use scp to put the laptop's public key on the desktop:
$ scp id_ed25519.pub
rshep...@salmo.appl-ecosys.com:/home/rshepard/.ssh/authorized_keys
The authenticity of host
In that case you have a few options.
1. Enable password authentication on the desktop.
2. Move the key another way (email pubkey, pastebin, etc)
3. On your desktop, copy the key from your laptop.
Using either password auth, or by adding an existing key to your
laptop's authorised keys file.
On Wed, 19 Apr 2023, Jeffrey Borcean wrote:
Are you able to ssh into your desktop from the laptop?
Jeffrey,
Nope. That's what I'm trying to do.
It looks like the desktop is configured to use keys for
authentication, but you don't have any trusted keys on the laptop. So
you can't connect.
> rshep...@salmo.appl-ecosys.com: Permission denied (publickey).
Are you able to ssh into your desktop from the laptop?
It looks like the desktop is configured to use keys for
authentication, but you don't have any trusted keys on the laptop. So
you can't connect.
If you have another key that is
On Wed, 19 Apr 2023, Russell Senior wrote:
What was your goal in copying the public key?
Russell,
Adding it to the desktop's authorized_keys file.
Rich
What was your goal in copying the public key?
--
Russell Senior
russ...@personaltelco.net
On Wed, Apr 19, 2023, 11:05 Rich Shepard wrote:
> Generated a key pair and, following the Slackware OpenSSH instructions
> tried to use scp to put the laptop's public key on the desktop:
>
> $ scp
Generated a key pair and, following the Slackware OpenSSH instructions
tried to use scp to put the laptop's public key on the desktop:
$ scp id_ed25519.pub
rshep...@salmo.appl-ecosys.com:/home/rshepard/.ssh/authorized_keys
The authenticity of host '[salmo.appl-ecosys.com]:
([192.168.55.1]:
24 matches
Mail list logo
