public key auth using exported putty keys.
From: r.l. (rl@f8.com.au)Date: 08/12/02
- Next message: J.D. Baldwin: "Re: PuTTY fails with "Out of memory" error"
- Previous message: andy thomas: "openssh-3.4p1 build problem on Tru64 Alpha"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "r.l." <rl@f8.com.au> Date: Tue, 13 Aug 2002 00:23:27 +1000
hello
I have openssh version 3.4p1 on two linux boxes.
I also have putty on a win32 box, the latest dev/snapshot version.
I generated a key pair using puttygen. I exported the openssh format pub
key from puttygen to one of the linux boxes and public key auth works
fine from putty to that box.
I then exported both the public key and the private key to openssh
format.
I cannot get pub key auth to work using these exported keys between the
two linux boxes. The debug/verbose output follows.
I hope I have included sufficient of the output to help with diagnosis,
if not, I shall post the entire transcript.
The rsa protocol 2 private key is on the client as $HOME/.ssh/id_rsa
owned by the correct user with permissions of 600.
The public key is on the server in $HOME/.ssh/authorized_keys2 owned by
the same user as the client. (also been tried in authorized_keys)
On the client, where id_rsa is the private key:
$ ssh -vvv hostname
...
debug1: service_accept: ssh-userauth
debug1: got SSH2_MSG_SERVICE_ACCEPT
debug1: authentications that can continue: publickey,keyboard-interactive
debug3: start over, passed a different list
publickey,keyboard-interactive
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: next auth method to try is publickey
debug1: try pubkey: /home/dsmith/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: try privkey: /home/dsmith/.ssh/id_dsa
debug3: no such identity: /home/dsmith/.ssh/id_dsa
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-interactive
debug3: remaining preferred: password
debug3: authmethod_is_enabled keyboard-interactive
debug1: next auth method to try is keyboard-interactive
debug2: userauth_kbdint
debug2: we sent a keyboard-interactive packet, wait for reply
debug1: authentications that can continue: publickey,keyboard-interactive
debug3: userauth_kbdint: disable: no info_req_seen
debug2: we did not send a packet, disable method
debug1: no more auth methods to try
Permission denied (publickey,keyboard-interactive).
On the server, I started sshd at maximum debug level:
$ sshd -ddd
...
debug3: mm_request_receive entering
debug1: userauth-request for user dsmith service ssh-connection method
publickey
debug1: attempt 1 failures 1
debug2: input_userauth_request: try method publickey
debug1: test whether pkalg/pkblob are acceptable
debug3: mm_key_allowed entering
debug3: mm_request_send entering: type 20
debug3: mm_key_allowed: waiting for MONITOR_ANS_KEYALLOWED
debug3: mm_request_receive_expect entering: type 21
debug3: mm_request_receive entering
debug3: monitor_read: checking request 20
debug3: mm_answer_keyallowed entering
debug3: mm_answer_keyallowed: key_from_blob: 0x80a8cc0
debug1: temporarily_use_uid: 501/501 (e=0)
debug1: trying public key file /home/dsmith/.ssh/authorized_keys
debug3: secure_filename: checking '/home/dsmith/.ssh'
debug3: secure_filename: checking '/home/dsmith'
debug3: secure_filename: terminating check at '/home/dsmith'
debug1: restore_uid
debug2: key not found
debug1: temporarily_use_uid: 501/501 (e=0)
debug1: trying public key file /home/dsmith/.ssh/authorized_keys2
debug3: secure_filename: checking '/home/dsmith/.ssh'
debug3: secure_filename: checking '/home/dsmith'
debug3: secure_filename: terminating check at '/home/dsmith'
debug1: restore_uid
debug2: key not found
debug3: mm_answer_keyallowed: key 0x80a8cc0 is disallowed
debug3: mm_request_send entering: type 21
debug2: userauth_pubkey: authenticated 0 pkalg ssh-rsa
Failed publickey for dsmith from xxx.xxx.xxx.xxx port 1529 ssh2
debug3: mm_request_receive entering
debug1: userauth-request for user dsmith service ssh-connection method
keyboard-interactive
debug1: attempt 2 failures 2
debug2: input_userauth_request: try method keyboard-interactive
debug1: keyboard-interactive devs
debug1: auth2_challenge: user=dsmith devs=
debug1: kbdint_alloc: devices ''
debug2: auth2_challenge_start: devices
Failed keyboard-interactive for dsmith from xxx.xxx.xxx.xxx port 1529
ssh2
Connection closed by xxx.xxx.xxx.xxx
debug1: Calling cleanup 0x8070c60(0x0)
debug1: Calling cleanup 0x8053520(0x0)
debug1: Calling cleanup 0x8070c60(0x0)
Pubkey auth works fine between the two machines using openssh generated
key pairs.
The format of the openssh private key that putty exports looks like the
format of a private key that openssh produces. Likewise the public key
that begins ssh-rsa... that is the exported openssh public key that
putty offers, looks just like an openssh generated one.
I have tried many things over a long period of time, all to no avail. I
am left with the feeling that there is something wrong with the format
of the keys that putty exports. But putty documents the
export-to-openssh as if it is ok, so I must faithfully acknowledge that
fact. I cannot find anything in buglists to any other effect.
I would really appreciate some suggestions.
Thanks
rolf.
- Next message: J.D. Baldwin: "Re: PuTTY fails with "Out of memory" error"
- Previous message: andy thomas: "openssh-3.4p1 build problem on Tru64 Alpha"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
