Update:
Adding an entry into the local /etc/hosts file I was able to get it to
work with one account, but not another. Here is the debug output:
from the working account:
xxyy% ssh -v aabb-int
SSH Version 1.2.27 [sparc-sun-solaris2.5.1], protocol version 1.5.
Standard version. Does not use RSAREF.
xxyy: Reading configuration data /etc/ssh_config
xxyy: ssh_connect: getuid 1131 geteuid 0 anon 0
xxyy: Connecting to aabb-int [209.143.245.233] port 22.
xxyy: Allocated local port 1022.
xxyy: Connection established.
xxyy: Remote protocol version 1.5, remote software version 1.2.17
xxyy: Waiting for server public key.
xxyy: Received server public key (768 bits) and host key (1024 bits).
xxyy: Host 'aabb-int' is known and matches the host key.
xxyy: Initializing random; seed file /home/jhall/.ssh/random_seed
xxyy: Encryption type: idea
xxyy: Sent encrypted session key.
xxyy: Installing crc compensation attack detector.
xxyy: Received encrypted confirmation.
xxyy: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
xxyy: Server refused our rhosts authentication or host key.
xxyy: No agent.
xxyy: Trying RSA authentication with key 'jhall@xxyy'
xxyy: Received RSA challenge from server.
xxyy: Sending response to host key RSA challenge.
xxyy: Remote: RSA authentication accepted.
xxyy: RSA authentication accepted by server.
xxyy: Requesting pty.
xxyy: Requesting shell.
xxyy: Entering interactive session.
Last login: Wed Dec 22 12:14:14 1999 from xxyy-int
Sun Microsystems Inc. SunOS 5.7 Generic October 1998
aabb.fooie.com%
from the non-working account:
xxyy:/home/oracle>ssh -v aabb-int
SSH Version 1.2.27 [sparc-sun-solaris2.5.1], protocol version 1.5.
Standard version. Does not use RSAREF.
xxyy: Reading configuration data /etc/ssh_config
xxyy: ssh_connect: getuid 101 geteuid 0 anon 0
xxyy: Connecting to aabb-int [209.143.245.233] port 22.
xxyy: Allocated local port 1022.
xxyy: Connection established.
xxyy: Remote protocol version 1.5, remote software version 1.2.17
xxyy: Waiting for server public key.
xxyy: Received server public key (768 bits) and host key (1024 bits).
xxyy: Host 'aabb-int' is known and matches the host key.
xxyy: Initializing random; seed file /home/oracle/.ssh/random_seed
xxyy: Encryption type: idea
xxyy: Sent encrypted session key.
xxyy: Installing crc compensation attack detector.
xxyy: Received encrypted confirmation.
xxyy: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
xxyy: Server refused our rhosts authentication or host key.
xxyy: No agent.
xxyy: Trying RSA authentication with key 'oracle@xxyy'
xxyy: Received RSA challenge from server.
xxyy: Bad passphrase supplied for key file /home/oracle/.ssh/identity.
<--- what does this mean?
Enter passphrase for RSA key 'oracle@xxyy':
xxyy: Sending response to host key RSA challenge.
xxyy: Remote: RSA authentication accepted.
xxyy: RSA authentication accepted by server.
xxyy: Requesting pty.
xxyy: Requesting shell.
xxyy: Entering interactive session.
Last login: Wed Dec 22 11:42:01 1999 from xxyy-int
Sun Microsystems Inc. SunOS 5.7 Generic October 1998
aabb.fooie.com:/home/oracle>
If some
Jim Hall wrote:
>
> Guys
>
> I can't get the ssh/scp to work with no passwords either. I have read
> the faq, and it looks like my fatal flaw is that my reverse DNS is set
> up incorrectly. Currently, I run behind a NAT, so my public DNS address
> for my web server is different than the IP address of the actual box. Is
> there a way to get this to work using local hosts files, or is ssh tied
> to DNS?
>
> JIM
>
> Atro Tossavainen wrote:
> >
> > Dear Mohan,
> >
> > > 4. Enable RSA authentication (per user based) on machine B in the
> > > config file sshd_config.
> > > Make "permitemptypasswords yes". Restart SSH Daemon on machine B.
> >
> > Permitting empty passwords is not necessary for RSA authentication to
> > work.
