[PLUG] Enabling bi-directional ssh
Rich Shepard
rshepard at appl-ecosys.com
Mon Nov 7 14:17:12 UTC 2016
On Sun, 6 Nov 2016, Tom wrote:
> I struggle to understand what is local and what is remote and what files
> you have where. So here is the minimum what you need to do/audit:
>
> Local machine .ssh/:
> id_ed25519 - r/w by user only (600)
> id_ed25519.pub - r/w by user + r by group and others (644)
>
> Remote machine(s) .ssh/:
> authorized_keys - containing the public key line from your Local
> id_ed25519.pub; must be by readable (at least 400)
Tom,
On the desktop I had the public key permissions set to 600; just changed
them to 644 and restarted sshd.
Now both desktop and portable have these permissions in ~/.ssh:
-rw-r--r-- authorized_keys
-rw-r--r-- config # contains the port number
-rw------- 12:42 id_ed25519
-rw-r--r-- id_ed25519.pub
-rw-r--r-- known_hosts
When I try to connect from desktop (local) to portable (remote) I see this:
$ ssh typha
ssh: connect to host typha port <port>: Connection refused
When I try to connect from portable (local) to desktop (remote) I see this:
$ ssh salmo
Permission denied (publickey).
I can add verbosity to the output if that helps. I'm still not seeing what
I'm missing. Ran ssh-keygen with the same passphrase on both hosts. Running
ssh-agent on both hosts returns information about it.
Thanks,
Rich
More information about the PLUG
mailing list