I am trying (in vain so far) to get ssh to allow me to connect using
public keys and without any prompts (I need this for a software
distribuiton/configuration package I need to run). I have had this work
before, but now it seems to escape me. To simplify my testing my client
and server system is the same (i.e., I'm attempting to use ssh to login
to the local system).

I have built the identity keys for rsa1, rsa, and dsa and placed their
public keys in my authorized_keys file.

The system is running 4.7-STABLE from about two weeks ago. I have
included a listing of my .ssh subdirectory and the debug output from
both ssh and sshd below.

It appears that ssh is failing to read the private rsa key, and then
prompting me for my passphrase.

Any help/enlightenment on this would be greatly appreciated!


My .ssh subdirectory contents:

$ ls -la .ssh
total 22
drwxr-xr-x  2 bobl  staff   512 Jan 21 15:28 .
drwxr-xr-x  3 bobl  staff   512 Jan 21 14:13 ..
-rw-r--r--  1 bobl  staff  1173 Jan 21 15:29 authorized_keys
lrwxr-xr-x  1 bobl  staff    15 Jan 21 15:27 authorized_keys2 -> authorized_keys
-rw-------  1 bobl  staff   744 Jan 21 15:27 id_dsa
-rw-r--r--  1 bobl  staff   608 Jan 21 15:27 id_dsa.pub
-rw-------  1 bobl  staff   951 Jan 21 14:13 id_rsa
-rw-r--r--  1 bobl  staff   228 Jan 21 14:13 id_rsa.pub
-rw-------  1 bobl  staff   533 Jan 21 15:28 identity
-rw-r--r--  1 bobl  staff   337 Jan 21 15:28 identity.pub
-rw-r--r--  1 bobl  staff   935 Jan 21 14:28 known_hosts

The sshd debug output (just the last 20 or so lines of it):

debug2: input_userauth_request: setting up authctxt for bobl
debug1: Starting up PAM with username "bobl"
debug1: PAM setting rhost to "boba.vieo.com"
debug2: input_userauth_request: try method none
Failed none for bobl from port 4480 ssh2
debug1: userauth-request for user bobl service ssh-connection method publickey
debug1: attempt 1 failures 1
debug2: input_userauth_request: try method publickey
debug1: test whether pkalg/pkblob are acceptable
debug1: trying public key file /usr/home/bobl/.ssh/authorized_keys
debug3: secure_filename: checking '/usr/home/bobl/.ssh'
debug3: secure_filename: checking '/usr/home/bobl'
debug3: secure_filename: terminating check at '/usr/home/bobl'
debug1: matching key found: file /usr/home/bobl/.ssh/authorized_keys, line 1
Found matching RSA key: 55:61:ed:da:c6:7d:53:d0:74:d3:d8:1c:73:82:d3:1a
debug1: restore_uid
debug2: userauth_pubkey: authenticated 0 pkalg ssh-rsa
Postponed publickey for bobl from port 4480 ssh2

The ssh debug output (again, just the last few interesting lines):

debug1: authentications that can continue: publickey,password,keyboard-interactive
debug3: start over, passed a different list publickey,password,keyboard-interactive
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: next auth method to try is publickey
debug1: try pubkey: /usr/home/bobl/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: input_userauth_pk_ok: pkalg ssh-rsa blen 149 lastkey 0x8069350 hint 0
debug2: input_userauth_pk_ok: fp 55:61:ed:da:c6:7d:53:d0:74:d3:d8:1c:73:82:d3:1a
debug3: sign_and_send_pubkey
debug1: PEM_read_PrivateKey failed
debug1: read PEM private key done: type <unknown>
Enter passphrase for key '/usr/home/bobl/.ssh/id_rsa': 

Bob Willcox            We seem to have forgotten the simple truth that
[EMAIL PROTECTED]           reason is never perfect. Only non-sense attains
Austin, TX             perfection.      -- Poul Henningsen [1894-1967]

To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message

Reply via email to