Passwordless SSH problem
yusuf.sun_at_gmail.com
Date: 06/08/05
- Next message: David McCarthy: "Re: Tunneling ports with Putty through an http proxy"
- Previous message: Ben Harris: "Re: Tunneling ports with Putty through an http proxy"
- Next in thread: Richard E. Silverman: "Re: Passwordless SSH problem"
- Reply: Richard E. Silverman: "Re: Passwordless SSH problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 7 Jun 2005 19:36:57 -0700
Dear all,
I have a problem setting up passwordless SSH as stated below:
I have a 5-node PC cluster, all running Gentoo Linux 2005.0.
On the master node, the /home and /opt directories are
exported as NFS, which are mounted on the /home and /opt
directories of the four slave nodes, respectively.
The export options in /etc/exports are the same for the
two directories: (async,no_subtree_check,rw).
I created several normal users with their home directories
located in /home on the master node, so that it can be
seen on all the other nodes. Then, I did the following for each user
to setup passwordless ssh:
1. ssh-keygen -t rsa (withour setting the passphrase)
2. cd ~/.ssh
3. cp .id_rsa.pub authorized_keys2
To this point, everything is ok. I can get passwordless ssh
for all these users.
Then I created a special user, whose home directory is in /opt.
Before setting the passwordless SSH, I can log in the slave nodes
by providing the password. After I did the the same procedure
as above, the passwordless ssh doesn't work. I see:
Connection closed by 192.168.1.101
without prompting for password.
Below is the output by "ssh -v 192.168.1.101"
OpenSSH_3.9p1, OpenSSL 0.9.7e 25 Oct 2004
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to node-1 [192.168.1.101] port 22.
debug1: Connection established.
debug1: identity file /opt/tccmp/.ssh/identity type -1
debug1: identity file /opt/tccmp/.ssh/id_rsa type 1
debug1: identity file /opt/tccmp/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version
OpenSSH_3.9p1
debug1: match: OpenSSH_3.9p1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.9p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'node-1' is known and matches the RSA host key.
debug1: Found key in /opt/tccmp/.ssh/known_hosts:1
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue:
publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /opt/tccmp/.ssh/identity
debug1: Offering public key: /opt/tccmp/.ssh/id_rsa
Connection closed by 192.168.1.101
Thanks for your help!
YY
- Next message: David McCarthy: "Re: Tunneling ports with Putty through an http proxy"
- Previous message: Ben Harris: "Re: Tunneling ports with Putty through an http proxy"
- Next in thread: Richard E. Silverman: "Re: Passwordless SSH problem"
- Reply: Richard E. Silverman: "Re: Passwordless SSH problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
