Re: Connecting to host

On Tue, 3 Jul 2007, Kelly Thomas wrote:

We have recently been asked by one of our vendors to connect to their
system through SSH. They are a Unix Host - beyond that, I don't have
much information.

We are a 'windows' shop and I'm using Putty version 0.60 to connect with
a Windows XP Professional machine. I have created a public key and sent
it to them. They have also sent their public key to me. From what
they're telling me, there should be no password to connect.

When I try to connect it first asks for my passphrase. I'm assuming it
will only do that the first time to validate my key - not sure.

The private key you created with PuTTY may require a passphrase. That may
be what you're seeing.

Or, their end may not be correctly finding the public key for you. If it's
not, then it may be reverting to password or keyboard-interactive
authentication.

I believe PuTTY can run with some debugging turned on. This will give you
some information about what authentication methods it is finding,
allowing, tying, failing, etc.


After typing in my passphrase for the key, I get a disconnect message:
Server sent disconnect message type 7 (service not available):
"Unsupported request (pty-req)."

This sounds seriously like their SSH daemon is not set up properly. Are
THEY able to SSH to their server? Are they able to do so and log in with
your username?

It's also possible that they succeed from inside their firewall, but when
you attempt to come in from outside the firewall, the firewall (or router)
is intercepting the SSH connection. They would need to configure the
firewall/router to forward a port 22 (default for SSH) connection to the
appropriate internal machine.

Are THEY able to connect in from the Internet at large (outside their
office)?


This message appears to be something on their end but they are telling
me it's on my end. Can anyone help?

It sounds to me like it is on THEIR end.

You might want to try Anzio Lite, our SSH client, available from the
website below.

Regards,
....Bob Rasmussen, President, Rasmussen Software, Inc.

personal e-mail: ras@xxxxxxxxx
company e-mail: rsi@xxxxxxxxx
voice: (US) 503-624-0360 (9:00-6:00 Pacific Time)
fax: (US) 503-624-0760
web: http://www.anzio.com

Relevant Pages

  • Explanation of SSH
    ... I am still unclear on how SSH works exactly. ... Client issues SSH command and names server ... "Shopper" says "server sends back its public host and server keys ... Surely there is only one public key it sends ...
    (comp.security.ssh)
  • SSH with Public Key Authentication (Was: Re: Attention: Giorgos Keramidas (Was: CVS Import Permissio
    ... I know that the setting of CVSUMASK on the server machine> works if you use SSH tunneling though. ... I have tried using SSH in the past, and got stuck setting up the public key login. ... In order to use cvs with ssh, we must use public key authentication. ...
    (freebsd-questions)
  • Re: ssh
    ... ssh can use DSA or RSA keys for authentication. ... public key can decrypt. ... is significantly smaller than that for ssh RSA/DSA keypairs. ... host to capture the key (either an unprotected key or a capture of your ...
    (Vuln-Dev)
  • RE: TIPS FOR THE NEWCOMER
    ... using your old private key, so there's no point in keeping a backup. ... > security risk if I send this through e-mail as an attachment to the ssh ... > has been compromised it does not really matter since it is a public key ... > more words for the passphrase it gets harder to crack? ...
    (SSH)
  • TIPS FOR THE NEWCOMER
    ... Correct me if I am wrong, it appears that ssh and gnupg has similar ... Do I have to send my public key to ... the other machine (ssh client) and likewise do the same thing get a copy ... Is the passphrase function here same as in gnupg that if you have ...
    (SSH)