Re: Solution - SSH.com clients, OpenSSH servers, and private/public keys. . .

From: Jack Moe (mojorisin_at_bigmailbox.net)
Date: 10/03/03

• Next message: Scott Packard: "network cpio using ssh"
• Previous message: Kyler Laird: "Re: Supressing ssh yes/no message"
• In reply to: Jack Moe: "Re: SSH.com clients, OpenSSH servers, and private/public keys. . ."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: 3 Oct 2003 12:16:42 -0700

mojorisin@bigmailbox.net (Jack Moe) wrote in message news:<e92e1c29.0310021020.71b552dc@posting.google.com>...
> "Pertti Kosunen" <pertti.kosunen@kolumb.us.fi_invalid> wrote in message news:<blhdti$9oh$1@phys-news1.kolumbus.fi>...
> > "Jack Moe" <mojorisin@bigmailbox.net> wrote in message
> > news:e92e1c29.0310011259.26be1f5e@posting.google.com...
> > > $ ssh-keygen -f ssh.com-key -X >> .ssh/authorized_keys2
> >
> > Try renaming .ssh/authorized_keys2 -> .ssh/authorized_keys.
>
> Hmmm. . . even though the entry in '/usr/local/etc/sshd_config' has this line:
>
> AuthorizedKeysFile .ssh/authorized_keys2
>
> Jack Moe

It turns out the client side (the SSH.com client) was not configured
correctly. the ~/.ssh2/identification file was not configured
correclty. Here's what was done to make it work:

On the Client Side (the SSH.com client)

1. cd .ssh2
2. ssh-keygen -t rsa
3. cp id_rsa_2048.pub identity.pub
4. cp id_rsa_2048_a identity
5. vi identification
6. add -> idkey identity
7. sftp identity.pub to <OpenSSH_server>

On the Server Side (the OpenSSH server)
8. $ ssh-keygen -i -f identity.pub >> ~/.ssh/authorized_keys

NOTE: if 'ssh-agent' is implemented, nothing will work (except if
using SSH version 1). There are good posts in the group referencing
this, and Mr. Silverman responded to this a few times.
Interoperability exists, but it would be easier if there some defined
standards in version 2.

Jack Moe

---

• Next message: Scott Packard: "network cpio using ssh"
• Previous message: Kyler Laird: "Re: Supressing ssh yes/no message"
• In reply to: Jack Moe: "Re: SSH.com clients, OpenSSH servers, and private/public keys. . ."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: SSH-Login via LAN ok, WAN fails (OpenSSH Windows, SecureCRT) ... > (the client) to the OpenSSH server without any problems ... > via the internet. ... > firewall and a Cisco 1721 for ADSL. ... (comp.security.ssh) Re: SSH-Login via LAN ok, WAN fails (OpenSSH Windows, SecureCRT) ... > (the client) to the OpenSSH server without any problems ... > firewall and a Cisco 1721 for ADSL. ... > Cisco 1721 NAT translation table while/after trying to log in ... (comp.security.ssh) Re: SSH.com client / OpenSSH server / RSA key auth ... windows SSH.com client and sent it to my server then I needed to convert ... > id_rsa.pub) to the OpenSSH Server machine. ... > users home directory. ... >> Is there a way to authenticate from a SSH.com client with a RSA user ... (SSH) x11 forwarding problems ... If I connect to a openssh server (SSH-1.99-OpenSSH_3.8p1, ... SuSE Linux 9.1 ) using a openssh client (OpenSSH_3.9p1, ... But, if I use j2ssh as a ssh client to connect to the same sshd, then I ... National Research Council Canada ... (SSH)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.ssh  > 2003-10