Re: Help with ssh-agent please?

From: s. keeling (keeling@spots.ab.ca)
Date: 03/31/02 

From: keeling@spots.ab.ca (s. keeling)
Date: Sun, 31 Mar 2002 18:57:11 GMT

On Sun, 31 Mar 2002 01:36:00 -0000, Hal Murray <hmurray-nospam@megapathdsl.net>:
> >I've been fighting with this for a while now. It seems nothing I try
> >has any effect on the bottom line. I've done the ssh-keygen thing, I
> >have a passphrase that is accepted by ssh-agent, I've copied my
> >identity.pub to my servers' ~/.ssh/authorized_keys2 file. On my
> >machine, I run ssh-agent, give it my passphrase, then:
> ...
>
> Do you have the file protections on your .ssh directory and file
> setup right?

All locked down to 600. O'Reilly's ssh book says it's alright to
leave them at 644 (for NIS).

> Using the -v option on ssh might tell you what's going on.

(1) infidel keeling /home/keeling_ ssh -v -l username -o RSAAuthorization=yes remotehost
OpenSSH_2.9.9p2, SSH protocols 1.5/2.0, OpenSSL 0x0090601f
command-line: line 0: Bad configuration option: RSAAuthorization

And I have this in my /etc/ssh/ssh_config:

   RSAAuthentication yes

> You should be able to debug things without using ssh-agent.
> That is ssh should ask you for your passphrase rather than
> your password.

I'll keep reading. Thanks for the suggestions. 

-- 
Any technology distinguishable from magic is insufficiently advanced.
   TopQuark Software & Services.  Contract programmer, server bum.
                Give up Spammers; I use procmail.
How to quote: http://learn.to/quote (Ger.) http://quote.6x.to (Eng.)

Relevant Pages

  • Re: Help with ssh-agent please?
    ... >have a passphrase that is accepted by ssh-agent, ... Do you have the file protections on your .ssh directory and file ... Using the -v option on ssh might tell you what's going on. ...
    (comp.os.linux.security)
  • RE: Controlling ssh from an external program
    ... passphrase could be discovered and the private key would fall into dangerous ... NB the SSH environment strings need to be included in this mixture! ... character as the final character could signify accept from a file. ... Controlling ssh from an external program ...
    (SSH)
  • Re: More on learning "Public Key Authentication"
    ... > computers in my local network are configured that way. ... > A long passphrase is a good idea but for other reasons. ... I _think_ a passphrase is used merely to verify that a public SSH ... _public_ keys between computers, so I do not even use a public SSH ...
    (comp.sys.mac.system)
  • different SSH/keychain behavior on Fedora Core 4?
    ... I'm wondering if anyone's seen different SSH and keychain behavior on ... But since upgrading the home machine to FC4 this trick no longer works ... for the passphrase for the local RSA private key... ... I realize that this may be more of an SSH question than an actual Fedora ...
    (Fedora)
  • Re: Defering passphrase entry with ssh-add
    ... I'm not aware of any technical reason why ssh-add couldn't defer requesting a password until its required. ... Yes which is why you only check/run it when ssh is used. ... until it determined it needed your passphrase. ... Again, ssh-agent works for me across all terminals as well as just in X, it's ssh-add you are talking about here which is ...
    (SSH)