Re: pubkey authentication problem redhat linux openssh 2.9p2-12

From: Ramon (ramon@nsi.com.au)
Date: 01/13/02


From: "Ramon" <ramon@nsi.com.au>
Date: Sat, 12 Jan 2002 23:24:21 GMT


... well persistence pays off... for any that are interested the problem was
the public key format generated by putty and f-secure... i edited the public
key by adding 'ssh-rsa' to the start of the key string and all worked!

before -
AAAAB3NzaC1yc2EAAAABKQAAAIEA9VEXzfCTlB4YyPyd2KMdEMu1ejD6IfTlOEHidRdVyd
wXc2e1h6h4s6oSKIUU6npuc6GfST+6dpdC95QE+8OLsI0SO1FvWBBnfIx/aj50CZtl2Hip
+l4SpuFOIk/Pcvo2mif6CyvRVTNh8TM+gm4N67aRT47BFLl7086HDGtzrBE=

after -
ssh-rsa
AAAAB3NzaC1yc2EAAAABKQAAAIEA9VEXzfCTlB4YyPyd2KMdEMu1ejD6IfTlOEHidRdVyd
wXc2e1h6h4s6oSKIUU6npuc6GfST+6dpdC95QE+8OLsI0SO1FvWBBnfIx/aj50CZtl2Hip
+l4SpuFOIk/Pcvo2mif6CyvRVTNh8TM+gm4N67aRT47BFLl7086HDGtzrBE=

"Ramon" <ramon@nsi.com.au> wrote in message
news:gq308.9563$je.43391@news-server.bigpond.net.au...
> ... some further information... if i generate the RSA keys using ssh-kegen
> in Linux, pubkey authentication work fine using ssh on Linux... hence i
> think the problem is related to the format of the RSA public key generated
> by F-Secure (running on Win XP) (note, i've also tried Putty and have
> similar problems)... the contents of the authorized_keys2 file is below...
> the top one (that works) was generated by ssh-kegen, and the lower by
> F-secure.
>
> ssh-rsa
>
AAAAB3NzaC1yc2EAAAABIwAAAIEAo2XHsuq3hMlKIx/TOB99wroRm+gruAl5n2Dv7m4EbStFOdbm
> 2BkGdNLBSVp+ereULo+5QykV/yy
>
TvW0A86nU4COdKfpJS6zqiRWv/fBmDOQlQUXEPRrBivyxOjFNKeByiVwYDjzIW7c04ALQ/yW7uy+
> jL4HrNgDVLtRvEgeA7pE= ramon@firewall
> ---- BEGIN SSH2 PUBLIC KEY ----
> Subject: ramon_rsa
> Comment: "Ramon@tiger.nsi.au"
> AAAAB3NzaC1yc2EAAAABKQAAAIEA9VEXzfCTlB4YyPyd2KMdEMu1ejD6IfTlOEHidRdVyd
> wXc2e1h6h4s6oSKIUU6npuc6GfST+6dpdC95QE+8OLsI0SO1FvWBBnfIx/aj50CZtl2Hip
> +l4SpuFOIk/Pcvo2mif6CyvRVTNh8TM+gm4N67aRT47BFLl7086HDGtzrBE=
> ---- END SSH2 PUBLIC KEY ----
>
> ramon ali
>
>
> "Ramon" <ramon@nsi.com.au> wrote in message
> news:b4308.9539$je.43239@news-server.bigpond.net.au...
> > i'm having no joy trying to get public key authentication working with
> > Redhat Linux 7.2 / Openssh 2.9p2-12 ... password authentication works
> fine..
> > i've configured the /etc/ssh/sshd_config file and added
> > 'PubkeyAuthentication yes' to it, however i believe that is the default
> > anyway... i've generated both DSA and RSA keys using f-secure ssh key
> > generation wizard and dropped them into the ~/.ssh/authorized_keys2
file,
> > however without any success... the syslog (in Debug mode) says...
> >
> > sshd: connection from 1.1.1.5 port 3602
> > sshd: enabling compatibility mode for protocol 2.0
> > sshd: failed none for ramon from 1.1.1.5 port 3602 ssh2
> > sshd: failed publickey for ramon from 1.1.1.5 port 3602 ssh2
> > sshd: failed publickey for ramon from 1.1.1.5 port 3602 ssh2
> > sshd: failed none for ramon from 1.1.1.5 port 3602 ssh2
> > sshd: failed password for ramon from 1.1.1.5 port 3602 ssh2
> >
> > i'm assuming the two duplicate entries result from the client (f-secure
> ssh
> > 4.3) attempting DSA and then RSA authentication... any clues
apprecaited.
> >
> > ramon ali
> > ramon@nsi.com.au
> >
> >
> >
>
>



Relevant Pages

  • Re: pubkey authentication problem redhat linux openssh 2.9p2-12
    ... have their own key generators that seem to write the public key in a ... >> the public key format generated by putty and f-secure... ...
    (comp.security.ssh)
  • Re: pubkey authentication problem redhat linux openssh 2.9p2-12
    ... I generate a RSA key and type ... > the public key format generated by putty and f-secure... ... > key by adding 'ssh-rsa' to the start of the key string and all worked! ...
    (comp.security.ssh)
  • Re: sftp Win client batch mode?
    ... but Putty works quite well. ... > to run it in batch mode and feed it a list of commands from ... > not have to install that for every user, especially when F-Secure is the ... > officially supported Windows SSH client for our organization. ...
    (comp.security.ssh)
  • Re: Putty + AIX + X11 forwarding
    ... how do I get the DISPLAY value set when I connect using putty? ... I'm not sure as I don't use F-Secure. ... You would also need to enable the "Enable X11 Forwarding" checkbox in ... Good judgement comes with experience. ...
    (comp.security.ssh)
  • Re: Comparison between PuTTY and F-Secure
    ... qualitative comparisons performed between PuTTY and F-Secure. ... I've been using PuTTY in a "secure corporate environment" for years. ... I trust the open source community more than the big ...
    (comp.security.ssh)