I have been trying all day to get hostbased authentication
working on ssh2. I am running 2.0.13, so it seems like it SHOULD be working.
I've set up the /etc/ssh2/knownhosts/machinename.ssh-dss.pub on the
remote server. I have hostbased listed under AllowedAuthentications in
sshd2_config. I've verified that my hostnames are resolving as I would
expect them to and that they're listed properly in the .shosts and
publickey files. I am trying to log into the machine as root. I have a
/.shosts AND a /etc/shosts.equiv for good measure, but it always asks
me for a password.
Here's debug output from the server:
debug: Reading private host key from /etc/ssh2/hostkey
debug: Key comment: 1024-bit dsa hostkey
debug: SshUnixConfig/sshunixconfig.c:270/ssh_server_load_host_key: Reading public host
key from: /etc/ssh2/hostkey.pub
debug: Becoming server.
debug: Creating listener
debug: Listener created
debug: Running event loop
debug: Sshd2/sshd2.c:653/new_connection_callback: Wrapping stream with
ssh_server_wrap...
debug: ssh_server_wrap: creating transport protocol
debug: ssh_server_wrap: creating userauth protocol
debug: Sshd2/sshd2.c:663/new_connection_callback: done.
debug: new_connection_callback returning
debug: Remote version: SSH-1.99-2.0.13 (non-commercial)
...and from the client:
Development-time debugging not compiled in.
To enable, configure with --enable-debug and recompile.
debug: hostname is 'hookups'.
debug: Unable to open //.ssh2/ssh2_config
Development-time debugging not compiled in.
To enable, configure with --enable-debug and recompile.
debug: connecting to hookups...
debug: entering event loop
debug: ssh_client_wrap: creating transport protocol
debug: ssh_client_wrap: creating userauth protocol
debug: Remote version: SSH-1.99-2.0.13 (non-commercial)
debug: Host key found from the database.
debug: Unable to opeo //.ssh2/identification
root@hookups's password:
...seemingly not terribly useful. Any help would be appreciated.
I've checked usenet and the web for help, but haven't found anything
much except other people asking for help with the same problem... :/
Paul
