Re: Bizarre passwordless scp problem, help

rsb-asp-google@xxxxxxxxxxxxx wrote:

Did you cache the private key on the client with ssh-agent or keychain?

How would I know?

Running ssh-agent or keychain ain't necessary for passwordless key-based ssh
to work.

Are the .ssh directory and authorized_keys file in the correct user's
home directory on the server?

Yes according to /etc/passwd, but I get the feeling that that is not
where ssh is being looked for it.

the authorized_keys must be placed in .ssh in home dir of a user you're
trying to log-in as. So, if you're using something like:

scp john@server

then the keys must be placed in john's home dir/.ssh. If you're trying:

scp server

then ssh will try to log-in as the user issuing the command from local
system. For example, if it's dave it'll try to log-in as dave, though keys
are placed in john's home dir.

If this is not an issue check your sshd_config file for fields like:
RSAAuthenticatio, PubkeyAuthentication, AuthorizedKeysFile and
PasswordAuthentication.

--
---
Cezary Morga
.

Relevant Pages

  • Re: Apache Software Foundation Server compromised, resecured. (fwd)
    ... this was one "result" of the comromised ssh binary at sourceforge. ... a public server of the Apache Software Foundation ... > (ASF) was illegally accessed by unknown crackers. ... > exhaustive audit of all Apache source code and binary distributions ...
    (FreeBSD-Security)
  • Re: FreeBSD Crash without Errors, Warnings, or Panics
    ... I suppose I could run on stable until the driver is fixed in a release branch, but I need this box up and online, and I've always read that the stable branch is not the place for production servers. ... I'm running 6.0-RELEASE-p5 on a Toshiba built server: dual Xeon Intel motherboard with a LSILogic MegaRAID controller. ... Also, some network ports still respond, like a telnet to port 22 to test SSH will yield an SSH banner, but trying to connect with SSH just hangs. ... The box runs a web-based app and connects to a local Postgres DB which seemed to be unable to start new connections being requested by the PHP scripts. ...
    (freebsd-hackers)
  • Re: restrict ssh access
    ... > We have one ssh server which receives about 6000 failed attempts to ... > unsuccessful login attempts per client IP address? ... the remote server is also running OpenSSH. ...
    (comp.security.ssh)
  • Re: SSH as root
    ... Subject: SSH as root ... but it doesn't require having a key on the server that could be ... If they compromise a server, and the passphrase, etc. is there, they only ... private key to anyone. ...
    (SSH)
  • Re: Explanation of SSH
    ... I am still unclear on how SSH works exactly. ... Client issues SSH command and names server ... "Shopper" says "server sends back its public host and server keys ... Surely there is only one public key it sends ...
    (comp.security.ssh)