[PLUG] Enabling bi-directional ssh

Rich Shepard rshepard at appl-ecosys.com
Mon Nov 7 14:17:12 UTC 2016


On Sun, 6 Nov 2016, Tom wrote:

> I struggle to understand what is local and what is remote and what files
> you have where. So here is the minimum what you need to do/audit:
>
> Local machine .ssh/:
> id_ed25519 - r/w by user only (600)
> id_ed25519.pub - r/w by user + r by group and others (644)
>
> Remote machine(s) .ssh/:
> authorized_keys - containing the public key line from your Local
>                  id_ed25519.pub; must be by readable (at least 400)

Tom,

   On the desktop I had the public key permissions set to 600; just changed
them to 644 and restarted sshd.

   Now both desktop and portable have these permissions in ~/.ssh:

-rw-r--r--  authorized_keys
-rw-r--r--  config	# contains the port number
-rw-------  12:42 id_ed25519
-rw-r--r--  id_ed25519.pub
-rw-r--r--  known_hosts

   When I try to connect from desktop (local) to portable (remote) I see this:

$ ssh typha
ssh: connect to host typha port <port>: Connection refused

   When I try to connect from portable (local) to desktop (remote) I see this:

$ ssh salmo
Permission denied (publickey).

   I can add verbosity to the output if that helps. I'm still not seeing what
I'm missing. Ran ssh-keygen with the same passphrase on both hosts. Running
ssh-agent on both hosts returns information about it.

Thanks,

Rich




More information about the PLUG mailing list