Re: OpenSSH Problems


Subject: Re: OpenSSH Problems
From: cdowns (cdowns@skillsoft.com)
Date: Wed Feb 21 2001 - 14:18:42 MST


Bryn Hughes wrote:

> I just installed the OpenSSH core and server packages. They installed fine,
> everything appears to be working on the server (I can start sshd no problem,
> I was able to generate keys, etc)
>
> Connecting from an outside client isn't working on this machine, however.
> I'm using a Mac with SSH support (I have another machine with SSH installed
> that I can connect to fine). Basically I'm getting a "Password
> Authentication Failed" message when trying to connect.
>
> Can anyone think of what the problem might be? OpenSSH v. 1.2.2-1
>
> TIA,
>
> Bryn

make sure on the client have a dir created like ~user/.ssh/ and inside that
dir have these files:

drwx------ 2 cdowns cdowns 4096 Feb 20 12:45 .ssh

and :

[root@scavenger cdowns]# ls -l .ssh/
total 12
-rw------- 1 cdowns cdowns 529 Sep 21 10:39 identity
-rw------- 1 cdowns cdowns 333 Sep 21 10:34 identity.pub
-rw-r--r-- 1 cdowns cdowns 3953 Feb 20 12:48 known_hosts
[root@scavenger cdowns]#

these permisions must be so.. or it does not work at all. and on the server
make sure you have the ~user/.ssh set to chmod 0700 and inside .ssh/ have the
files :

authorized_keys -> chmod 644
identity.pub -> 0600
known_hosts -> 0644 and will be created when you connect to someone even if the
connectoin fails or is denied. make sure you clear the host that is bad inside
of this file.

also you should do rsa passphrase authentication method and in order to do so
you must edit the sshd_config file on the server here is mine:

[root@scavenger /root]# cd /etc/ssh/
[root@scavenger ssh]# ls
ssh_config ssh_host_dsa_key ssh_host_dsa_key.pub ssh_host_key
ssh_host_key.pub sshd_config
[root@scavenger ssh]#vi sshd_config

---------- cut for brevity -------------
X11Forwarding no

blah
blah
RSAAuthentication yes
blah
blah
PasswordAuthentication no

-----------------------------------

anyway i hope this helps....

-D



This archive was generated by hypermail 2a24 : Wed Feb 21 2001 - 14:19:03 MST