[plug] openssh

[Bernard Blackham]

Paul,

I'm not sure if I'm stating the obvious here, but I haven't seen it
mentioned yet.

1. Check the permissions of the the files involved:
$HOME/.ssh/authorized_keys on the server should be chmod'ed 600

Otherwise I get this message in /var/log/messages (on a RH6 system:)

sshd[29930]: RSA authentication refused for bernard: bad ownership or
modes for '/home/bernard/.ssh/authorized_keys'.

I also keep the .ssh dir with permissions 700, not sure if it's necessary,
but good practice.

2. I think this was mentioned previously, but to check /etc/sshd_config
(or elsewhere) to have `RSAAuthentication yes' in there somewhere

3. If it's a root account then there's a `PermitRootLogin yes' or
somethign line too


My RH6 system logs sshd errors in /var/log/messages and that only, so it
seems. Take a look there on the server, and also `ssh -v username at host'
might offer some more clues. With wrong permissions it spills:

debug: Trying RSA authentication with key 'bernard at bernard'
debug: Remote: RSA authentication refused for bernard: bad ownership or
modes for '/home/bernard/.ssh/authorized_keys'.
debug: Server refused our key.
debug: Doing password authentication.
bernard at dagobah's password:


HTH,

Bernard.

-- 
 Bernard Blackham
 bernard at blackham.com.au


On Tue, 10 Apr 2001, Paul Dean wrote:
> I would like to login to my server from my workstation without using a 
> password.
> After reading the man pages I found that you can do this with RSA auth files.
> I have run ssh-keygen to create my identity files and copied my .pub file 
> to authorized_keys in my $HOME/.ssh/ dir as the docs said so, but everytime 
> I go to login my server keeps asking for a password.
> ssh all works fine and stuff but I can't seem to get this working.
> Is there something I'm missing or something??