Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

Think of it! With VLSI we can pack 100 ENIACs in 1 sq. cm.!

computers / comp.os.linux.networking / Re: publickey authentication on Linux Mint machine

SubjectAuthor
* publickey authentication on Linux Mint machineBob Tennent
`- Re: publickey authentication on Linux Mint machineBob Tennent

1
publickey authentication on Linux Mint machine

<smj51g$sdr$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=254&group=comp.os.linux.networking#254

  copy link   Newsgroups: comp.os.linux.networking
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: rdtennent@tennent.ca (Bob Tennent)
Newsgroups: comp.os.linux.networking
Subject: publickey authentication on Linux Mint machine
Date: Thu, 11 Nov 2021 13:15:28 -0000 (UTC)
Organization: A noiseless patient Spider
Lines: 46
Message-ID: <smj51g$sdr$1@dont-email.me>
Reply-To: rdtennent@gmail.com
Injection-Date: Thu, 11 Nov 2021 13:15:28 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="aa03bebaa3c6099b1b43fcc1a7670bcf";
logging-data="29115"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+gcSekZ89fJkfy+/LiIOZPWRItYqjH+5k="
User-Agent: slrn/1.0.3 (Linux)
Cancel-Lock: sha1:VdvjiemMSlEg0X3IEFk22oHnb/w=
 by: Bob Tennent - Thu, 11 Nov 2021 13:15 UTC

I've set up publickey authentication on many systems but
this one is baffling me. Here is the relevant -vvv output of
an attempt to ssh into it:

debug1: Authentications that can continue: publickey,password
debug3: start over, passed a different list publickey,password
debug3: preferred gssapi-keyex,gssapi-with-mic,publickey,
keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/rdt/.ssh/id_rsa
debug3: send_pubkey_test
debug3: send packet: type 50
debug2: we sent a publickey packet, wait for reply
debug3: receive packet: type 51
debug1: Authentications that can continue: publickey,password
debug1: Trying private key: /home/rdt/.ssh/id_dsa
debug3: no such identity: /home/rdt/.ssh/id_dsa: No such file or directory
debug1: Trying private key: /home/rdt/.ssh/id_ecdsa
debug3: no such identity: /home/rdt/.ssh/id_ecdsa: No such file or directory
debug1: Trying private key: /home/rdt/.ssh/id_ed25519
debug3: no such identity: /home/rdt/.ssh/id_ed25519: No such file or directory
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred: ,password

Why is the authentication failing? Password authentication
works okay and all the relevant permissions are okay. I get
similar results when trying from three different systems.
I've tried re-doing ssh-sysgen and ssh-copy-id, to no avail.
The .ssh/authorized_keys file looks okay. The /etc/ssh/sshd_config
has

PubkeyAuthentication yes

and I've re-started sshd.

What am I missing?

Re: publickey authentication on Linux Mint machine

<smj5m3$5ar$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=255&group=comp.os.linux.networking#255

  copy link   Newsgroups: comp.os.linux.networking
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: rdtennent@tennent.ca (Bob Tennent)
Newsgroups: comp.os.linux.networking
Subject: Re: publickey authentication on Linux Mint machine
Date: Thu, 11 Nov 2021 13:26:27 -0000 (UTC)
Organization: A noiseless patient Spider
Lines: 13
Message-ID: <smj5m3$5ar$1@dont-email.me>
References: <smj51g$sdr$1@dont-email.me>
Reply-To: rdtennent@gmail.com
Injection-Date: Thu, 11 Nov 2021 13:26:27 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="aa03bebaa3c6099b1b43fcc1a7670bcf";
logging-data="5467"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19WzENbsLotnMlwu3PjSekOsLIfY+DkEww="
User-Agent: slrn/1.0.3 (Linux)
Cancel-Lock: sha1:G7DVHBv6SpPJioxrT/6LcJrHE/w=
 by: Bob Tennent - Thu, 11 Nov 2021 13:26 UTC

On Thu, 11 Nov 2021 13:15:28 -0000 (UTC), Bob Tennent wrote:
> I've set up publickey authentication on many systems but
> this one is baffling me.

I executed the following permission-setting commands
suggested in /usr/share/doc/openssh-client/faq.html

$ chmod go-w $HOME $HOME/.ssh
$ chmod 600 $HOME/.ssh/authorized_keys
$ chown `whoami` $HOME/.ssh/authorized_keys

and publickey authentication now works.

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor