[SLL] SSH puzzle

Derek Simkowiak dereks at realloc.net
Thu Nov 5 12:57:17 PST 2009 

 > In my experience ssh will always try to use the id_rsa or id_dsa keys 
by default.

    I stand corrected.  At some point I must have gotten confused 
between another user acount and/or a custom-named key... and the idea 
that SSH wouldn't automatically use id_rsa stuck with me after that. 

    Brian, thanks for pointing that out... and just when I thought I had 
it all figured out... :)


--Derek

P.S.> The info re: keychain is still valid if you want to use a 
passphrase-protected key.


On 11/05/2009 06:41 AM, Brian C. Lane wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 11/3/09 12:56 AM, Mike Schuh wrote:
>   
>> Hi all,
>>
>> ssh isn't doing what I want ...
>>
>>     
>
> Did you get this sorted out?
>
> Since you said the keys do work when launching sshd from the command
> line manually this would indicate that the system's sshd is being
> pointed to a non-default config file. The default is in /etc/ssh/sshd_config
>
> It may also be helpful to know what distribution you are on.
>
> I'm not sure Derek is right about needing to setup ssh-agent. In my
> experience ssh will always try to use the id_rsa or id_dsa keys by
> default. It is only if you have extra keys that you need to specify them
> with -i or use ssh-agent. Note that this is on the client side, but
> since you said it did work when you ran the server manually I do not
> think the client is your problem.
>
> So, what I'd do:
>
> 1. Track down the config file being used by the system
>
> 2. Look for PubkeyAuthentication yes in the file. If this is No then it
> will only use passwords
>
> 3. If there is a /etc/ssh/sshd_config file compare it to whatever the
> system is using and either point the system sshd to /etc/ssh or change
> the other one.
>
> Also, if you are trying to login as root, check the config file for
> PermitRootLogin yes
>
> This isn't a really good idea to allow, but it may be blocking you.
> Usually you can do everything you need by sshing in as a normal user and
> using sudo restricted commands to use root permissions.
>
> Good Luck!
>
> Brian
>
> - -- 
> - ---[Office 67.8F]--[Outside 48.1F]--[Server 104.5F]--[Coaster 67.8F]---
> - ---[      CAT EXPRESS (367192970) @ 47 34.4495 -122 29.5491       ]---
> Software, Linux, Microcontrollers             http://www.brianlane.com
> AIS Parser SDK                                http://www.aisparser.com
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.8 (Darwin)
> Comment: Remember Lexington Green!
>
> iD8DBQFK8uQyIftj/pcSws0RArE4AJ9iVutD73iNNODwR4lN51pvDaGVkgCeJt4e
> gJGMOY2iCv9P+No1tS20uNg=
> =XwaH
> -----END PGP SIGNATURE-----
>

More information about the linux-list mailing list