Newbie question: publickey authentication method fails

jose_luis_fdez_diaz_news_at_yahoo.es
Date: 08/31/05

• Previous message: bruce ackman: "can anyone recommend a good ssh client for mac os 10.4?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 31 Aug 2005 05:25:25 -0700

Hi,

LOCAL MACHINE: parexbat@apl-to1-p
REMOTE MACHINE: ftp_npci@dpr-ap4-p

On local machine:

apl-to1-p@[tibco]:/home/parexddebatch/.ssh# id
uid=1004(parexbat) gid=102(tibco)
apl-to1-p@[tibco]:/home/parexddebatch/.ssh# uname -n
apl-to1-p
apl-to1-p@[tibco]:/home/parexddebatch/.ssh# ll id_rsa
-rw------- 1 parexbat tibco 887 Aug 31 09:15 id_rsa
apl-to1-p@[tibco]:/home/parexddebatch/.ssh# ssh-keygen -y
Enter file in which the key is (/home/parexddebatch/.ssh/id_rsa):
ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA8vBntHO2fDz0MkmYD5L9h77l9m6cVkGxjnJDHU7r7G7wiZFao0O+P0ZBF34muHliUh7fZqybn1/hKhrKG86/jDUdM2YJHYVKNFufkdUzQMiBhhhpF4ZsGxovktsEJYs6tv8JOTv3yoLkhsXois0rQ+PzIBpJIymyybNyYgMqBiM=
apl-to1-p@[tibco]:/home/parexddebatch/.ssh#

On remote machine:

$ uname -n
dpr-ap4-p
$ id
uid=1039(ftp_npci) gid=505(usersprd)
$ cd $HOME/.ssh
$ ls -ld . *
drwx------ 2 ftp_npci usersprd 512 Aug 31 10:59 .
-rwxr-xr-x 1 ftp_npci usersprd 456 Aug 31 10:58 authorized_keys
$ cat authorized_keys
ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA8vBntHO2fDz0MkmYD5L9h77l9m6cVkGxjnJDHU7r7G7wiZFao0O+P0ZBF34muHliUh7fZqybn1/hKhrKG86/jDUdM2YJHYVKNFufkdUzQMiBhhhpF4ZsGxovktsEJYs6tv8JOTv3yoLkhsXois0rQ+PzIBpJIymyybNyYgMqBiM=
parexbat@apl-to1-p
ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzC1a2mNtDZBd3qKIDbT+qhXUbor7bNWtbFFAnow2srvjJVv8VjtlJBik2y89bWoitk+ktvxAgmN/NdlNdFeabDx/9PkIz6/Ga0/J1SmFVUsRGsP0dTwRDKtssbUMrML9g/sM/AVMEgLGNamrnix8DGn4X1C1RNhr33rUYUVSaIk=
parexbat@apl-to2-p

When I execute ssh in verbose mode I get this output:

OpenSSH_3.8.1p1, OpenSSL 0.9.7b 10 Apr 2003
debug1: Reading configuration data /usr/local/etc/ssh_config
debug1: Connecting to dpr-ap4-p [10.15.16.25] port 22.
debug1: Connection established.
debug1: identity file /home/parexddebatch/.ssh/id_rsa type -1
debug1: Remote protocol version 2.0, remote software version
OpenSSH_3.8.1p1
debug1: match: OpenSSH_3.8.1p1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.8.1p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'dpr-ap4-p' is known and matches the RSA host key.
debug1: Found key in /home/parexddebatch/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue:
publickey,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /home/parexddebatch/.ssh/id_rsa
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue:
publickey,password,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug1: Authentications that can continue:
publickey,password,keyboard-interactive
debug1: Next authentication method: password
debug1: Authentication succeeded (password).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
debug1: channel 0: free: client-session, nchannels 1
debug1: fd 2 clearing O_NONBLOCK
Connection to dpr-ap4-p closed.
debug1: Transferred: stdin 0, stdout 0, stderr 33 bytes in 0.8 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 40.1
debug1: Exit status 0

Why does "ssh" ask for the password ?

Thanks in advance,
Jose Luis.

• Previous message: bruce ackman: "can anyone recommend a good ssh client for mac os 10.4?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: SSH from windows to linux using public key authentication ... Linux Linux wrote: ... public key authentication. ... I have copied exact same public key to my Prolinux and it's not working. ... debug1: Next authentication method: publickey ... (RedHat) Re: ssh client problem ... authentication method he does not want to use. ... >debug1: Connection established. ... >debug2: we did not send a packet, ... we sent a password packet, ... (comp.os.linux.misc) Re: pubkey authentication problem ... The RSA client key generated by F-Secure ... But the key still doesn't work for authentication. ... debug1: done: KEX2. ... userauth-request for user schmidt service ssh-connection ... (comp.security.ssh) Re: SSH from windows to linux using public key authentication ... Authentication refused: bad ownership or modes for directory etc... ... Linux Linux wrote: ... I have copied exact same public key to my Prolinux and it's not working. ... debug1: Next authentication method: publickey ... (RedHat) SSH and LDAP ... We are installing an LDAP server for AIX and Solaris login ... "Too many authentication failures for " ... debug1: ssh_rsa_verify: signature correct ... debug3: preferred publickey,keyboard-interactive,password ... (comp.unix.aix)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint