[PLUG] SSH Key Authentication

AthlonRob AthlonRobNF at cs.com
Wed Aug 14 17:17:03 UTC 2002


On Wed, 2002-08-14 at 06:16, Paul Heinlein wrote:
> > I generated the keypair (which works great on my LAN and between users
> > on this box) with the ssh-keygen -t rsa command.  I ftp'd (ascii mode, I
> > was sure) id_rsa.pub over to the school's box and moved it to
> > ~/.ssh/authorized_keys2 (as I did on local boxen).
> > 
> > I enabled a ton of debug output (-vvv) when I connected to see if I
> > could figure out what was wrong.
> 
> Just to make sure we're on the same page:
> 
> 1. If you do 'ssh-add -l' on your machine, the key in question
>    shows up as listed, right?

No, I'm not using an authentication agent.  I just created the keys with
no passphrases.  Not the safest way to do it, but I'm not using the keys
to store any kind of secrets.  :-)

> 2. You invoked ssh with the '-2' option?

I don't usually, but did just now, redoing the experiments Tyler
suggested.  No change...

> 3. The perms for ~/ on the school's machine disallow write access to 
>    anyone but you?

This is correct, although I'm sure root could come in and do stuff.

> 4. The perms for the ~/.ssh/ directory on the school's machine are 
>    0700?

Correct....

> 5. The perms for ~/.ssh/authorized_keys2 on the school's machine are
>    0600?

Correct again.

I think the config file on Odin is just messed up, but we'll see what
y'all think  :-)

-- 
Rob
"Google is your friend"





More information about the PLUG mailing list