Re: SSH question (4.3)
Hi! On Wed, Sep 10, 2008 at 10:00:23PM +0200, Toni Mueller wrote: On Wed, 10.09.2008 at 13:56:23 +0200, Hannah Schroeter [EMAIL PROTECTED] wrote: (I.e. check whether there's some intervening dir that's not accessible to user admin/group admin, but to group wheel). that was the problem, thanks! You're welcome. Kind regards, --Toni++ Kind regards, Hannah.
Re: SSH question (4.3)
Hi! On Wed, Sep 10, 2008 at 12:55:00PM +0200, Toni Mueller wrote: [...] debug1: trying public key file /H/admin/.ssh/authorized_keys2 ls -ld /H /H/admin /H/admin/.ssh /H/admin/.ssh/authorized_keys /H/admin/.ssh/authorized_keys2 (I.e. check whether there's some intervening dir that's not accessible to user admin/group admin, but to group wheel). [...] Kind regards, Hannah.
Re: SSH question (4.3)
On 2008-09-10, Toni Mueller [EMAIL PROTECTED] wrote: /etc/ssh/sshd_config: PermitRootLogin without-password = root login with ssh keys works, as expected. I've created another user, uid 1000, on the same box, and copied root's authorized_keys file over, adjusted ownership, permissions etc... = SSH login (from the same remote user) does _NOT_ work. I've added that user to the group 'wheel' = SSH login works I've removed said user from the group 'wheel' = SSH login no longer works Does this apply? If this file, the ~/.ssh directory, or the user's home directory are writable by other users, then the file could be modified or replaced by unauthorized users. In this case, sshd will not al- low it to be used unless the StrictModes option has been set to ``no''. The recommended permissions can be set by executing ``chmod go-w ~/ ~/.ssh ~/.ssh/authorized_keys''. Specifically, is the user's home directory writable by wheel?
Re: SSH question (4.3)
Hi, On Wed, 10.09.2008 at 11:57:46 +, Stuart Henderson [EMAIL PROTECTED] wrote: Specifically, is the user's home directory writable by wheel? no, I've checked this. But I will have to check whether Hannah's hint, too... (should have had this idea earlier, doh!). Kind regards, --Toni++
Re: SSH question (4.3)
Hi Hannah, On Wed, 10.09.2008 at 13:56:23 +0200, Hannah Schroeter [EMAIL PROTECTED] wrote: (I.e. check whether there's some intervening dir that's not accessible to user admin/group admin, but to group wheel). that was the problem, thanks! Kind regards, --Toni++