Re: OpenSSH_3.1p1 auth problems
From: Cameron L. Spitzer (spambait@petra.dyndns.org)Date: 08/26/02
- Next message: Faux_Pseudo: "Re: Top vs. Bottom posting"
- Previous message: Hans Bouwers: "Re: tcpd with dynamic ip addresses"
- In reply to: Richard E. Silverman: "Re: OpenSSH_3.1p1 auth problems"
- Next in thread: Jim Levie: "Re: OpenSSH_3.1p1 auth problems"
- Reply: Jim Levie: "Re: OpenSSH_3.1p1 auth problems"
- Reply: those who know me have no need of my name: "Re: OpenSSH_3.1p1 auth problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Cameron L. Spitzer" <spambait@petra.dyndns.org> Date: 26 Aug 2002 07:52:27 GMT
In article <m1lk7mejn4i.fsf@syrinx.oankali.net>, Richard E. Silverman wrote:
>
> Your problem is that you generated and RSA1 key, which can only be used
> with protocol 1... but you are using protocol 2. Use
>
> ssh-keygen -t {rsa|dsa}
I ran ssh-keygen -t dsa and gave a passphrase, and copied
.ssh/{id_dsa,id_dsa.pub} to the remote machine.
Then I copied id_dsa.pub to authorized_keys there.
The only thing that's different is I can log into the remote
machine with that passphrase now, instead of my shadow password
for the remote machine.
Is that what was supposed to happen?
Is that the difference between "keyboard interactive" and "password?"
I really can't tell from man ssh.
What I expected would happen is .ssh/id_dsa would match, and I
wouldn't have to type any password any more.
But ssh -v gives
...
debug1: next auth method to try is publickey
debug1: try privkey: /home/cls/.ssh/identity
debug1: try privkey: /home/cls/.ssh/id_rsa
debug1: try pubkey: /home/cls/.ssh/id_dsa
debug1: input_userauth_pk_ok: pkalg ssh-dss blen 434 lastkey 0x810bf68 hint 2
debug1: PEM_read_PrivateKey failed
debug1: read PEM private key done: type <unknown>
Enter passphrase for key '/home/cls/.ssh/id_dsa':
debug1: read PEM private key done: type DSA
...
Why did PEM_read_PrivateKey fail? What does PEM stand for?
Cameron
- Next message: Faux_Pseudo: "Re: Top vs. Bottom posting"
- Previous message: Hans Bouwers: "Re: tcpd with dynamic ip addresses"
- In reply to: Richard E. Silverman: "Re: OpenSSH_3.1p1 auth problems"
- Next in thread: Jim Levie: "Re: OpenSSH_3.1p1 auth problems"
- Reply: Jim Levie: "Re: OpenSSH_3.1p1 auth problems"
- Reply: those who know me have no need of my name: "Re: OpenSSH_3.1p1 auth problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
