Re: SSH with Public Key Authentication (Was: Re: Attention: Giorgos Keramidas (Was: CVS Import Permissions))

On Feb 1, 2006, at 4:33 PM, david bryce wrote:

On Thu, 2 Feb 2006 01:04:19 +0100, "Daniel A." <ldrada@xxxxxxxxx> said: 
Thanks again for taking the time to reply. I have tried using SSH in
the past, and got stuck setting up the public key login (that's
why we're using pserver).

I spent a few hours yesterday trying to get SSH going again. I can
login with SSH from the windows machine using Putty, but only when
I use password authentication. In order to use cvs with ssh (using
the plink program in Putty), we must use public key authentication.

We are getting a 'Key Refused' error when trying to use public key
authentication. I have tried doing several things including editing
the /etc/ssh/sshd_config file:

Try one or more of the following things:
- Use puttygen to import your private key, and then export as .ppk
- Load your key.ppk into pageant, and let it manage your private key(s)
- Log in using your private key from the server (ie. login to the
server with your password, and then from the shell ssh
username@localhost).

Please inform me of your results. 

Daniel,

Thank you for taking the time to reply.

We are currently using pageant to manage the private key. However,
the keys we are using are generated with puttygen (not from the
server). The public key was then copied to the authorized_keys
file on the server. Would you recommend generating the keys on
the server? Do you have an idea where are some instructions
about how to generate the keys on the server? Thanks!

Regards,

DB

--
  david bryce
  davidbryce@xxxxxxxxxxx

--
http://www.fastmail.fm - The way an email service should be

Can you login using any key in the authorized_keys file? Also, what's the umask for authorized keys (ls -l .ssh/authorized_keys)?
-Garrett
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: Explanation of SSH
    ... I am still unclear on how SSH works exactly. ... Client issues SSH command and names server ... "Shopper" says "server sends back its public host and server keys ... Surely there is only one public key it sends ...
    (comp.security.ssh)
  • Re: Hacker activity?
    ... >login to a server, most as root but some are attempts to login to ... >telnet, all come from the same remote server, and all fail. ... >getting some odd cgi calls to a script on a secure ssl server. ... Make sure root cannot login to your system via ssh. ...
    (freebsd-questions)
  • Public Authentication Problem on Batch Job using SCP2 when SSH Client Reboot
    ... to a SSH server, HOST2. ... for secure ftp login. ... The login ID is a local user account ... we found that scp2 run failed every time the SSH client ...
    (comp.security.ssh)
  • Re: restrict ssh access
    ... > We have one ssh server which receives about 6000 failed attempts to ... > unsuccessful login attempts per client IP address? ... the remote server is also running OpenSSH. ...
    (comp.security.ssh)
  • Explanation of SSH
    ... I am still unclear on how SSH works exactly. ... Client issues SSH command and names server ... "Shopper" says "server sends back its public host and server keys ... Surely there is only one public key it sends ...
    (comp.security.ssh)