Re: ssh: without password/passphrase prompt

From: sgaedig (sgaedig_at_tudor.com)
Date: 06/01/05

Next message: Anne & Lynn Wheeler: "Re: private key encryption - doubts"

Previous message: Yogee: "private key encryption - doubts"
In reply to: sgaedig: "ssh: without password/passphrase prompt"
Next in thread: Richard E. Silverman: "Re: ssh: without password/passphrase prompt"
Reply: Richard E. Silverman: "Re: ssh: without password/passphrase prompt"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 1 Jun 2005 06:30:59 -0700

Changing the permissions as indicated below still doesn't work. Notice
the permissions on root's home and .ssh. I can ssh -l root and it
works.

# ls -ld /home/sgaedig
drwxr-xr-x 33 sgaedig sgaedig 2560 May 31 14:59 /home/sgaedig
# ls -ld /home/sgaedig/.ssh
drwx------ 2 sgaedig sgaedig 512 May 31 14:59
/home/sgaedig/.ssh
# ls -ld /.ssh
drwx------ 2 root other 512 Jun 1 08:54 /.ssh
# ls -ld /
drwxr-xr-x 28 root root 1024 Jun 1 08:52 /
#

sgaedig wrote:
> I'm almost there but..........
>
> ssh root@xxx.xxx.xxx w
>
> works
>
> ssh xxx.xxx.xxx w
>
> does not work.
>
> I'm running Cygwin on a XP workstation and connecting to a Sun V240z
> running Solaris 9. I've checked file and directory permissions,
> sshd_config file settings, authorized_keys etc., etc. The following is
> the -vvv output, unsuccessful first and successful second. Both tests
> are run with the same systems.
>
>
> OpenSSH_3.9p1, OpenSSL 0.9.7d 17 Mar 2004
> debug1: Reading configuration data /etc/ssh_config
> debug2: ssh_connect: needpriv 0
> debug1: Connecting to xs5-trd-p1 [10.2.11.58] port 22.
> debug1: Connection established.
> debug1: identity file /home/sgaedig/.ssh/identity type -1
> debug3: Not a RSA1 key file /home/sgaedig/.ssh/id_rsa.
> debug2: key_type_from_name: unknown key type '-----BEGIN'
> debug3: key_read: missing keytype
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug2: key_type_from_name: unknown key type '-----END'
> debug3: key_read: missing keytype
> debug1: identity file /home/sgaedig/.ssh/id_rsa type 1
> debug3: Not a RSA1 key file /home/sgaedig/.ssh/id_dsa.
> debug2: key_type_from_name: unknown key type '-----BEGIN'
> debug3: key_read: missing keytype
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug2: key_type_from_name: unknown key type '-----END'
> debug3: key_read: missing keytype
> debug1: identity file /home/sgaedig/.ssh/id_dsa type 2
> debug1: Remote protocol version 2.0, remote software version
> Sun_SSH_1.0
> debug1: match: Sun_SSH_1.0 pat Sun_SSH_1.0*
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_3.9p1
> debug2: fd 3 setting O_NONBLOCK
> debug1: SSH2_MSG_KEXINIT sent
> debug1: SSH2_MSG_KEXINIT received
> debug2: kex_parse_kexinit:
> diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
> debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
> debug2: kex_parse_kexinit:
> aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
> aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
> hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
> debug2: kex_parse_kexinit:
> hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit: first_kex_follows 0
> debug2: kex_parse_kexinit: reserved 0
> debug2: kex_parse_kexinit: diffie-hellman-group1-sha1
> debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
> debug2: kex_parse_kexinit: aes128-cbc,blowfish-cbc,3des-cbc
> debug2: kex_parse_kexinit: aes128-cbc,blowfish-cbc,3des-cbc
> debug2: kex_parse_kexinit: hmac-sha1,hmac-md5
> debug2: kex_parse_kexinit: hmac-sha1,hmac-md5
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit:
> C,geo,lcttab,iso_8859_1,iso_8859_15,en_CA,en_CA.ISO8859-1,en_US,en_US.ISO8859-1,en_US.ISO8859-15,en_US.ISO8859-15@euro,es,es_MX,es_MX.ISO8859-1,fr,fr_CA,fr_CA.ISO8859-1
> debug2: kex_parse_kexinit:
> C,geo,lcttab,iso_8859_1,iso_8859_15,en_CA,en_CA.ISO8859-1,en_US,en_US.ISO8859-1,en_US.ISO8859-15,en_US.ISO8859-15@euro,es,es_MX,es_MX.ISO8859-1,fr,fr_CA,fr_CA.ISO8859-1
> debug2: kex_parse_kexinit: first_kex_follows 0
> debug2: kex_parse_kexinit: reserved 0
> debug2: mac_init: found hmac-md5
> debug1: kex: server->client aes128-cbc hmac-md5 none
> debug2: mac_init: found hmac-md5
> debug1: kex: client->server aes128-cbc hmac-md5 none
> debug2: dh_gen_key: priv key bits set: 136/256
> debug2: bits set: 492/1024
> debug1: sending SSH2_MSG_KEXDH_INIT
> debug1: expecting SSH2_MSG_KEXDH_REPLY
> debug3: check_host_in_hostfile: filename /home/sgaedig/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 45
> debug3: check_host_in_hostfile: filename /home/sgaedig/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 18
> debug1: Host 'xs5-trd-p1' is known and matches the RSA host key.
> debug1: Found key in /home/sgaedig/.ssh/known_hosts:45
> debug2: bits set: 521/1024
> debug1: ssh_rsa_verify: signature correct
> debug2: kex_derive_keys
> debug2: set_newkeys: mode 1
> debug1: SSH2_MSG_NEWKEYS sent
> debug1: expecting SSH2_MSG_NEWKEYS
> debug2: set_newkeys: mode 0
> debug1: SSH2_MSG_NEWKEYS received
> debug1: SSH2_MSG_SERVICE_REQUEST sent
> debug2: service_accept: ssh-userauth
> debug1: SSH2_MSG_SERVICE_ACCEPT received
> debug2: key: /home/sgaedig/.ssh/identity (0x0)
> debug2: key: /home/sgaedig/.ssh/id_rsa (0x100ff078)
> debug2: key: /home/sgaedig/.ssh/id_dsa (0x100ff090)
> debug1: Authentications that can continue: publickey,password
> debug3: start over, passed a different list publickey,password
> debug3: preferred publickey,keyboard-interactive,password
> debug3: authmethod_lookup publickey
> debug3: remaining preferred: keyboard-interactive,password
> debug3: authmethod_is_enabled publickey
> debug1: Next authentication method: publickey
> debug1: Trying private key: /home/sgaedig/.ssh/identity
> debug3: no such identity: /home/sgaedig/.ssh/identity
> debug1: Offering public key: /home/sgaedig/.ssh/id_rsa
> debug3: send_pubkey_test
> debug2: we sent a publickey packet, wait for reply
> debug1: Authentications that can continue: publickey,password
> debug1: Offering public key: /home/sgaedig/.ssh/id_dsa
> debug3: send_pubkey_test
> debug2: we sent a publickey packet, wait for reply
> debug1: Authentications that can continue: publickey,password
> debug2: we did not send a packet, disable method
> debug3: authmethod_lookup password
> debug3: remaining preferred: ,password
> debug3: authmethod_is_enabled password
> debug1: Next authentication method: password
> debug3: packet_send2: adding 64 (len 52 padlen 12 extra_pad 64)
> debug2: we sent a password packet, wait for reply
> debug1: Authentications that can continue: publickey,password
> Permission denied, please try again.
> debug3: packet_send2: adding 64 (len 52 padlen 12 extra_pad 64)
> debug2: we sent a password packet, wait for reply
> debug1: Authentications that can continue: publickey,password
> Permission denied, please try again.
> debug3: packet_send2: adding 64 (len 52 padlen 12 extra_pad 64)
> debug2: we sent a password packet, wait for reply
> debug1: Authentications that can continue: publickey,password
> debug2: we did not send a packet, disable method
> debug1: No more authentication methods to try.
> Permission denied (publickey,password).
>
> -------------------------------------------------------------------------------
>
> OpenSSH_3.9p1, OpenSSL 0.9.7d 17 Mar 2004
> debug1: Reading configuration data /etc/ssh_config
> debug2: ssh_connect: needpriv 0
> debug1: Connecting to xs5-trd-p1 [10.2.11.58] port 22.
> debug1: Connection established.
> debug1: identity file /home/sgaedig/.ssh/identity type -1
> debug3: Not a RSA1 key file /home/sgaedig/.ssh/id_rsa.
> debug2: key_type_from_name: unknown key type '-----BEGIN'
> debug3: key_read: missing keytype
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug2: key_type_from_name: unknown key type '-----END'
> debug3: key_read: missing keytype
> debug1: identity file /home/sgaedig/.ssh/id_rsa type 1
> debug3: Not a RSA1 key file /home/sgaedig/.ssh/id_dsa.
> debug2: key_type_from_name: unknown key type '-----BEGIN'
> debug3: key_read: missing keytype
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug2: key_type_from_name: unknown key type '-----END'
> debug3: key_read: missing keytype
> debug1: identity file /home/sgaedig/.ssh/id_dsa type 2
> debug1: Remote protocol version 2.0, remote software version
> Sun_SSH_1.0
> debug1: match: Sun_SSH_1.0 pat Sun_SSH_1.0*
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_3.9p1
> debug2: fd 3 setting O_NONBLOCK
> debug1: SSH2_MSG_KEXINIT sent
> debug1: SSH2_MSG_KEXINIT received
> debug2: kex_parse_kexinit:
> diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
> debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
> debug2: kex_parse_kexinit:
> aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
> aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
> hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
> debug2: kex_parse_kexinit:
> hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit: first_kex_follows 0
> debug2: kex_parse_kexinit: reserved 0
> debug2: kex_parse_kexinit: diffie-hellman-group1-sha1
> debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
> debug2: kex_parse_kexinit: aes128-cbc,blowfish-cbc,3des-cbc
> debug2: kex_parse_kexinit: aes128-cbc,blowfish-cbc,3des-cbc
> debug2: kex_parse_kexinit: hmac-sha1,hmac-md5
> debug2: kex_parse_kexinit: hmac-sha1,hmac-md5
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit:
> C,geo,lcttab,iso_8859_1,iso_8859_15,en_CA,en_CA.ISO8859-1,en_US,en_US.ISO8859-1,en_US.ISO8859-15,en_US.ISO8859-15@euro,es,es_MX,es_MX.ISO8859-1,fr,fr_CA,fr_CA.ISO8859-1
> debug2: kex_parse_kexinit:
> C,geo,lcttab,iso_8859_1,iso_8859_15,en_CA,en_CA.ISO8859-1,en_US,en_US.ISO8859-1,en_US.ISO8859-15,en_US.ISO8859-15@euro,es,es_MX,es_MX.ISO8859-1,fr,fr_CA,fr_CA.ISO8859-1
> debug2: kex_parse_kexinit: first_kex_follows 0
> debug2: kex_parse_kexinit: reserved 0
> debug2: mac_init: found hmac-md5
> debug1: kex: server->client aes128-cbc hmac-md5 none
> debug2: mac_init: found hmac-md5
> debug1: kex: client->server aes128-cbc hmac-md5 none
> debug2: dh_gen_key: priv key bits set: 137/256
> debug2: bits set: 526/1024
> debug1: sending SSH2_MSG_KEXDH_INIT
> debug1: expecting SSH2_MSG_KEXDH_REPLY
> debug3: check_host_in_hostfile: filename /home/sgaedig/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 45
> debug3: check_host_in_hostfile: filename /home/sgaedig/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 18
> debug1: Host 'xs5-trd-p1' is known and matches the RSA host key.
> debug1: Found key in /home/sgaedig/.ssh/known_hosts:45
> debug2: bits set: 516/1024
> debug1: ssh_rsa_verify: signature correct
> debug2: kex_derive_keys
> debug2: set_newkeys: mode 1
> debug1: SSH2_MSG_NEWKEYS sent
> debug1: expecting SSH2_MSG_NEWKEYS
> debug2: set_newkeys: mode 0
> debug1: SSH2_MSG_NEWKEYS received
> debug1: SSH2_MSG_SERVICE_REQUEST sent
> debug2: service_accept: ssh-userauth
> debug1: SSH2_MSG_SERVICE_ACCEPT received
> debug2: key: /home/sgaedig/.ssh/identity (0x0)
> debug2: key: /home/sgaedig/.ssh/id_rsa (0x100ff090)
> debug2: key: /home/sgaedig/.ssh/id_dsa (0x100ff0a8)
> debug1: Authentications that can continue: publickey,password
> debug3: start over, passed a different list publickey,password
> debug3: preferred publickey,keyboard-interactive,password
> debug3: authmethod_lookup publickey
> debug3: remaining preferred: keyboard-interactive,password
> debug3: authmethod_is_enabled publickey
> debug1: Next authentication method: publickey
> debug1: Trying private key: /home/sgaedig/.ssh/identity
> debug3: no such identity: /home/sgaedig/.ssh/identity
> debug1: Offering public key: /home/sgaedig/.ssh/id_rsa
> debug3: send_pubkey_test
> debug2: we sent a publickey packet, wait for reply
> debug1: Server accepts key: pkalg ssh-rsa blen 149
> debug2: input_userauth_pk_ok: fp
> 19:48:08:cd:2e:15:64:fe:28:fd:72:ca:8f:78:b7:c7
> debug3: sign_and_send_pubkey
> debug1: read PEM private key done: type RSA
> debug1: Authentication succeeded (publickey).
> debug2: fd 6 setting O_NONBLOCK
> debug1: channel 0: new [client-session]
> debug3: ssh_session2_open: channel_new: 0
> debug2: channel 0: send open
> debug1: Entering interactive session.
> debug2: callback start
> debug2: client_session2_setup: id 0
> debug1: Sending command: w
> debug2: channel 0: request exec confirm 0
> debug2: callback done
> debug2: channel 0: open confirm rwindow 0 rmax 16384
> debug2: channel 0: rcvd adjust 32768
> debug2: channel 0: rcvd eof
> debug2: channel 0: output open -> drain
> debug2: channel 0: obuf empty
> debug2: channel 0: close_write
> debug2: channel 0: output drain -> closed
> debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
> debug2: channel 0: rcvd close
> debug2: channel 0: close_read
> debug2: channel 0: input open -> closed
> debug3: channel 0: will not send data after close
> debug2: channel 0: almost dead
> debug2: channel 0: gc: notify user
> debug2: channel 0: gc: user detached
> debug2: channel 0: send close
> debug2: channel 0: is dead
> debug2: channel 0: garbage collecting
> debug1: channel 0: free: client-session, nchannels 1
> debug3: channel 0: status: The following connections are open:
> #0 client-session (t4 r0 i3/0 o3/0 fd -1/-1 cfd -1)
>
> debug3: channel 0: close_fds r -1 w -1 e 6 c -1
> debug3: fd 2 is not O_NONBLOCK
> debug1: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.3 seconds
> debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0
> debug1: Exit status 0

Next message: Anne & Lynn Wheeler: "Re: private key encryption - doubts"

Previous message: Yogee: "private key encryption - doubts"
In reply to: sgaedig: "ssh: without password/passphrase prompt"
Next in thread: Richard E. Silverman: "Re: ssh: without password/passphrase prompt"
Reply: Richard E. Silverman: "Re: ssh: without password/passphrase prompt"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Cross Realm MIT <-> Windows Close But No Cigar
... Info about the two domains and ssh / smbclient test results follows. ... I created some principals and it confirmed the enctype was archfour-hmac: ... debug2: we sent a gssapi-with-mic packet, ...
(comp.protocols.kerberos)
Cross Realm MIT <-> Windows Close But No Cigar
... Info about the two domains and ssh / smbclient test results follows. ... I created some principals and it confirmed the enctype was archfour-hmac: ... debug2: we sent a gssapi-with-mic packet, ...
(comp.protocols.kerberos)
Re: Hostbased authentication using OpenSSH :: can anyone decypher or tell me what Im missing and ho
... > debug1: Connection established. ... > debug2: we sent a publickey packet, ... we did not send a packet, disable method ...
(comp.security.ssh)
Re: Hostbased authentication problem...heres the Debug output.....I am STUCK !!!
... debug1: Next authentication method: hostbased ... debug2: userauth_hostbased: chost hmsdwgp01. ... we sent a publickey packet, ...
(comp.security.ssh)