I'm trying to authenticate between two systems as well as authenticate
with itself using ssh2 (I looked for this info within the FAQ, but there
wasn't enough info to cover this topic. Maybe this should be included).
I've setup the authentication file as well as the identification file within
my .ssh home directory. My goal is to not use any .rhosts or .shosts
file, only key authentication, like ssh1.
These are the following steps I took in trying authenticate myself on
the same system:
1. ssh-keygen -P -b 1024 -t dsa
(this place my secure and pub key under $HOME/.ssh2 directory
2. Created the identification file under $HOME/.ssh2 directory and
added the following line:
IdKey id_dsa_1024_a
3. I created a directory called Local.pub under $HOME/.ssh2 directory
in order to place my public key under the Local.pub directory:
cp $HOME/.ssh2/id_dsa_1024_a.pub $HOME/.ssh2/Local.pub/
My $HOME/.ssh2 has the following files/directories:
Local.pub/
authorization
hostkeys/
id_dsa_1024_a
id_dsa_1024_a.pub
identification
random_seed
The $HOME/.ssh2/Local.pub/ directory has my pub key in it:
Local.pub/id_dsa_1024_a.pub
The $HOME/.ssh2/hostkeys/ directory has the hostkeys of my
system, which has multiple hostnames. I even use the raw IP ADDR
to created these hostkeys.
Here's an output of one ssh2 login session:
1020 wwinzer@whirlsvr:~/.ssh2 ==> ssh -v wahleewhirl.com
debug: hostname is 'wahleewhirl.com'.
debug: Unable to open /export/home/wwinzer/.ssh2/ssh2_config
debug: connecting to wahleewhirl.com...
debug: ssh_client_wrap: creating transport protocol
debug: ssh_client_wrap: creating userauth protocol
debug: entering event loop
debug: Ssh2Transport/trcommon.c:592/ssh_tr_input_version: Remote version:
SSH-1.99-2.0.13 (non-commercial)
debug: Remote version: SSH-1.99-2.0.13 (non-commercial)
debug: Host key found from the database.
debug: Ssh2Common/sshcommon.c:155/ssh_common_special: special packet received
from connection protocol: 3
debug: Ssh2Common/sshcommon.c:155/ssh_common_special: special packet received
from connection protocol: 4
debug:
Ssh2AuthPubKeyClient/authc-pubkey.c:797/ssh_client_auth_pubkey_agent_list_complete:
adding keyfile "/export/home/wwinzer/.ssh2/id_dsa_1024_a" to candidates
wwinzer's password:
debug: Ssh2Common/sshcommon.c:155/ssh_common_special: special packet received
from connection protocol: 6
debug: Ssh2/ssh2.c:304/client_authenticated: client_authenticated
debug: Ssh2Common/sshcommon.c:466/ssh_common_new_channel: num_channels now 1
debug: Requesting X11 forwarding with authentication spoofing.
Last login: Tue Nov 09 1999 18:54:48 from whirlsvr.wahleew
...
...
...
It looks as if it didn't look for my key under the $HOME/.ssh2/Local.pub
directory.
I just don't want to use any .shosts or .rhosts for auto-authentication.
If there isn't any way to do so, I'll have to use ssh1 exclusively because I
need to
update filesystems on multiple systems using rsync.
Thanks.
- Wally Winzer Jr.
