Re: ssh without password does not work

From: Vahid (NOSPAM-sunman_at_ureach.com)
Date: 11/30/03

• Next message: Siggi: "Signing a SSH-Key with a CA Certificate ????"
• Previous message: Nicholas C. Weaver: "My Agent Wishlist"
• In reply to: tom: "ssh without password does not work"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 30 Nov 2003 01:30:40 GMT

tom wrote:
> i got the following problem:
>
> i have a network with redhat 8.0 on about 7 machines and i need to run
> ssh without password inside this network. in this network /home
> directory is mounted from one server via nfs.
>
> what i tried is this (with 2 machines(i call them
> localhost,remotehost)):
>
> on localhost:
> cd .ssh
> ssh-keygen -t rsa
> ssh-keygen -t dsa
> scp *.pub user@remotehost:~/
> ssh remotehost -l user
> cat id_rsa.pub >> .ssh/authorized_keys
> cat id_dsa.pub >> .ssh/authorized_keys
> rm id_rsa.pub id_dsa.pub
> exit
>
> this did not work so i went on looking for hints in howtos and
> newsgroups and found:
>
> If above is not successful, check sshd configuration:
> vi /etc/ssh/sshd_config (on the Linux box)
> RSAAuthentication yes
> PubkeyAuthentication yes
>
> what i did on both hosts. but after restarting sshd (killall -HUP sshd
> und /etc/init.d/sshd restart), i had the same problem:
> could not connect without password.
>
> can anyone tell me what is going wrong here?
> thanx
> tom ...
>
> and here the configfiles in /etc/ssh/
> =====================================
>
snip 8<

Have you checked the permission on $HOME and .ssh directories, they must
be 755 for home and 750 or 700 for .ssh. Also directories can not be
setgid. I never do cat id_rsa.pub >> .ssh/authorized_keys.
Take a look at this: http://bumblebee.lcs.mit.edu/ssh2/
Just follow what applies to you.
- Vahid.

• Next message: Siggi: "Signing a SSH-Key with a CA Certificate ????"
• Previous message: Nicholas C. Weaver: "My Agent Wishlist"
• In reply to: tom: "ssh without password does not work"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Questions on secure remote access to Fedora Core 2 ... not secure at all, because hostnames can be forged. ... The users should generate themselves key pairs for SSH access. ... on the server, work on it, and then send it back. ... Linux-based, then Network Block Devices are a good idea, too. ... (comp.os.linux.security) Re: Synching deeply nested directories Debian Server - Win XP ... > network files. ... > to the server, the files are synchronized automatically using built-in XP ... It seems that ssh is really the ... I could also boot the remote box into ... (Debian-User) Re: SSH disconnect on illegal login attempt. ... First, you have not said what versions of SSH you are using, ... Tom> a user that is not on my server tries to login with out a rsa ... Tom> key. ... (comp.security.ssh) RE: Terminal Services over VPN ... and learn why you don't want to trust RDP over an untrusted network. ... > it's a Windows server though, as I don't know of any free SSH ... >> Has anyone used Terminal Services over Microsoft's VPN ... (Security-Basics) X Terminal problem ... I am trying to setup a network of X terminals. ... server through SSH with X forwarding. ... However, if I launch a session trough ssh locally on the server, ... (comp.os.linux.x)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint