Re: Public key authentication troubles

From: Nicolas Bertolotti (nbertolo_at_chez.com)
Date: 05/26/04

• Next message: Eric Caron: "sshd pam_setcred problem"
• Previous message: Darren Tucker: "Re: Destination server/port to tunnel www?"
• In reply to: Darren Tucker: "Re: Public key authentication troubles"
• Next in thread: Mike Delaney: "Re: Public key authentication troubles"
• Reply: Mike Delaney: "Re: Public key authentication troubles"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 26 May 2004 21:10:55 +0200

Hi,

You were right. Thanks a lot. I guess my eyes are not so good as I had read
the FAQ before asking the question. Now I know why it used to work on 90 %
of the computers I worked on and not on the other 10 %.

Anyway, I still don't understand the reason why such a restriction exists
(even in strict mode). As long as the .ssh directory contents is protected,
it should not be possible for a group member to do something bad on it. Am I
wrong ?

Nicolas

"Darren Tucker" <dtucker@dodgy.net.au> a écrit dans le message de
news:c8mlfe$pfr$1@gate.dodgy.net.au...
> In article <c8m1ce$m7i$1@news-reader5.wanadoo.fr>,
> Nicolas Bertolotti <nbertolo@chez.com> wrote:
> >I'm facing troubles while trying to activate connection without a
password
> >on a specific linux box.
> >
> >I've generated the keys using ssh-keygen -t rsa1
> >I've then copied the public key to authorized_keys : cp .ssh/identity.pub
> >.ssh/authorized_keys
> >I've also changed the permissions : chmod go-rwx .ssh
>
> Is the home dir group writable?
>
> http://www.openssh.com/faq.html#3.14 and failing that, run the server in
> debug mode: http://www.snailbook.com/faq/general-debugging.auto.html
>
> --
> Darren Tucker (dtucker at zip.com.au)
> GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
> Good judgement comes with experience. Unfortunately, the experience
> usually comes from bad judgement.

• Next message: Eric Caron: "sshd pam_setcred problem"
• Previous message: Darren Tucker: "Re: Destination server/port to tunnel www?"
• In reply to: Darren Tucker: "Re: Public key authentication troubles"
• Next in thread: Mike Delaney: "Re: Public key authentication troubles"
• Reply: Mike Delaney: "Re: Public key authentication troubles"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: FAQ Maintenance? ... A FAQ is supposed to be a useful and trusted information ... judgement for the inclusion of their unrealizable claims may call it ... Either the FAQ will a) make everyone happy, ... (comp.compression) Re: FAQ Maintenance? ... A FAQ is supposed to be a useful and trusted information ... judgement for the inclusion of their unrealizable claims may call it ... Either the FAQ will a) make everyone happy, ... (comp.compression) Re: Daycare poll ... > The "more eyes" belong to people with jobs that depend on their going ... that anyone is going to sexually abuse or hit a child while another adult ... > I chose these daycare providers through interviews and observations of ... and using my own judgement and continuing observations as ... (misc.kids) Re: FAQ Maintenance? ... A FAQ is supposed to be a useful and trusted information ... judgement for the inclusion of their unrealizable claims may call it ... Either the FAQ will a) make everyone happy, ... (comp.compression) Re: My dissertation on Ann Coulter..... ... TJM wrote: ... eyes and do the world a big favor already??? ... I'm sure you've tasted your share of "worthless cunts" to make such a ... value judgement? ... (rec.sport.golf)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint