Re: [SLL] SSH puzzle

Thu, 05 Nov 2009 12:58:05 -0800

> In my experience ssh will always try to use the id_rsa or id_dsa keys by default.
I stand corrected. At some point I must have gotten confused between another user acount and/or a custom-named key... and the idea that SSH wouldn't automatically use id_rsa stuck with me after that. Brian, thanks for pointing that out... and just when I thought I had it all figured out... :) 


--Derek


P.S.> The info re: keychain is still valid if you want to use a 
passphrase-protected key.



On 11/05/2009 06:41 AM, Brian C. Lane wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 11/3/09 12:56 AM, Mike Schuh wrote:

  

Hi all,

ssh isn't doing what I want ...


    


Did you get this sorted out?

Since you said the keys do work when launching sshd from the command
line manually this would indicate that the system's sshd is being
pointed to a non-default config file. The default is in /etc/ssh/sshd_config

It may also be helpful to know what distribution you are on.

I'm not sure Derek is right about needing to setup ssh-agent. In my
experience ssh will always try to use the id_rsa or id_dsa keys by
default. It is only if you have extra keys that you need to specify them
with -i or use ssh-agent. Note that this is on the client side, but
since you said it did work when you ran the server manually I do not
think the client is your problem.

So, what I'd do:

1. Track down the config file being used by the system

2. Look for PubkeyAuthentication yes in the file. If this is No then it
will only use passwords

3. If there is a /etc/ssh/sshd_config file compare it to whatever the
system is using and either point the system sshd to /etc/ssh or change
the other one.

Also, if you are trying to login as root, check the config file for
PermitRootLogin yes

This isn't a really good idea to allow, but it may be blocking you.
Usually you can do everything you need by sshing in as a normal user and
using sudo restricted commands to use root permissions.

Good Luck!

Brian


- -- 
- ---[Office 67.8F]--[Outside 48.1F]--[Server 104.5F]--[Coaster 67.8F]---

- ---[      CAT EXPRESS (367192970) @ 47 34.4495 -122 29.5491       ]---
Software, Linux, Microcontrollers             http://www.brianlane.com
AIS Parser SDK                                http://www.aisparser.com

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Remember Lexington Green!

iD8DBQFK8uQyIftj/pcSws0RArE4AJ9iVutD73iNNODwR4lN51pvDaGVkgCeJt4e
gJGMOY2iCv9P+No1tS20uNg=
=XwaH
-----END PGP SIGNATURE-----

  






















					Reply via email to