Publickey authentication with ssh

Chris.Bryant_at_DTAG.Com
Date: 11/24/03

  • Next message: Jim Wilder: "TITAN security script ported??" 
    Date: Mon, 24 Nov 2003 14:00:32 -0600
To: tru64-unix-managers@ornl.gov

    Admins,
            
            I am running tru64 5.1B and I am trying to setup publickey
    authentication with secure shell. In my /etc/ssh2/ssh2_config file I have
    AllowedAuthenication publickey,password and in /etc/ssh2/sshd_config file I
    have AllowedAuthenication publickey,password. Below is my output from ssh
    -v hostname. I get publickey disabled. Any Idea as to what could be
    causing this?

    TIA,
    Chris Bryant
    Unix Administrator
    Dollar Thrifty Automotive Group

    Script started on Mon Nov 24 13:55:21 2003
    $ ssh -v country
    debug: SshAppCommon/sshappcommon.c:185: Allocating global SshRegex context.
    debug: SshConfig/sshconfig.c:2786: Version not found on first line, assuming
    configuration to be old style.
    debug: SshConfig/sshconfig.c:640: Setting variable 'VerboseMode' to 'FALSE'.
    debug: SshConfig/sshconfig.c:2728: Unable to open
    /usr/users/cbryant/.ssh2/ssh2_config
    debug: Connecting to country, port 22... (SOCKS not used)
    debug: Ssh2/ssh2.c:2332: Entering event loop.
    debug: Ssh2Client/sshclient.c:1452: Creating transport protocol.
    debug: SshAuthMethodClient/sshauthmethodc.c:95: Added "publickey" to usable
    methods.
    debug: SshAuthMethodClient/sshauthmethodc.c:95: Added "password" to usable
    methods.
    debug: Ssh2Client/sshclient.c:1493: Creating userauth protocol.
    debug: client supports 2 auth methods: 'publickey,password'
    debug: SshUnixTcp/sshunixtcp.c:1227: using local hostname town
    debug: Ssh2Common/sshcommon.c:541: local ip = 158.146.77.17, local port =
    4558
    debug: Ssh2Common/sshcommon.c:543: remote ip = 158.146.77.18, remote port =
    22
    debug: SshConnection/sshconn.c:1957: Wrapping...
    debug: SshReadLine/sshreadline.c:3388: Initializing ReadLine...
    debug: Remote version: SSH-2.0-3.2.0 SSH Secure Shell Tru64 UNIX
    debug: Major: 3 Minor: 2 Revision: 0
    debug: Ssh2Transport/trcommon.c:1913: lang s to c: `', lang c to s: `'
    debug: Ssh2Transport/trcommon.c:1978: c_to_s: cipher aes128-cbc, mac
    hmac-sha1, compression none
    debug: Ssh2Transport/trcommon.c:1981: s_to_c: cipher aes128-cbc, mac
    hmac-sha1, compression none
    debug: Remote host key found from database.
    debug: Ssh2Common/sshcommon.c:342: Received SSH_CROSS_STARTUP packet from
    connection protocol.
    debug: Ssh2Common/sshcommon.c:392: Received SSH_CROSS_ALGORITHMS packet from
    connection protocol.
    debug: server offers auth methods 'publickey,password'.
    debug: Ssh2AuthPubKeyClient/authc-pubkey.c:1602: adding keyfile
    "/usr/users/cbryant/.ssh2/id_dsa_1024_a" to candidates
    debug: server offers auth methods 'publickey,password'.
    debug: Ssh2AuthClient/sshauthc.c:330: Method 'publickey' disabled.
    debug: server offers auth methods 'publickey,password'.
    debug: Ssh2AuthPasswdClient/authc-passwd.c:117: Starting password query...
    cbryant's password:
    debug: Ssh2Common/sshcommon.c:310: Received SSH_CROSS_AUTHENTICATED packet
    from connection protocol.
    debug: SshReadLine/sshreadline.c:3454: Uninitializing ReadLine...
    Authentication successful.
    debug: Ssh2Common/sshcommon.c:852: num_channels now 1
    warning: Cannot connect to DISPLAY; X11 forwarding disabled.
    Last successful login for cbryant: Mon Nov 24 12:41:37 CST 2003 from town
    Last unsuccessful login for cbryant: NEVER

    Your password will expire on Sat Nov 29 08:15:49 CST 2003

    Compaq Tru64 UNIX V5.1B (Rev. 2650); Tue Aug 12 05:56:24 CDT 2003 No mail.
    country> exit
    debug: Ssh2ChannelSession/sshchsession.c:1935: received exit status : 0
    debug: Ssh2Common/sshcommon.c:819: num_channels now 0
    debug: Got session close with exit_status=0
    debug: destroying client struct...
    debug: Ssh2Client/sshclient.c:1528: Destroying client.
    debug: SshConfig/sshconfig.c:2330: Freeing pki. (host_pki != NULL, user_pki
    = NULL)
    debug: SshConnection/sshconn.c:2009: Destroying SshConn object. Connection
    to country closed.
    debug: Ssh2Client/sshclient.c:1596: Destroying client completed.
    debug: SshAuthMethodClient/sshauthmethodc.c:100: Destroying authentication
    method array.
    debug: SshAppCommon/sshappcommon.c:198: Freeing global SshRegex context.
    debug: SshConfig/sshconfig.c:2330: Freeing pki. (host_pki = NULL, user_pki =
    NULL) $ exit

    script done on Mon Nov 24 13:55:34 2003

  • Next message: Jim Wilder: "TITAN security script ported??"

    Relevant Pages

    • Re: ssh as non-root user
      ... The server is reporting the following to the client: ... server offers auth methods ''. ... debug: ... Unauthorized access or use of this computer system may subject violators to ...
      (SSH)
    • Getting sftp to work in batch mode
      ... I've read all the previous posts on the subject as well as the posts ... Remover Server: ... debug: client supports 2 auth methods: 'publickey,password' ... server offers auth methods 'publickey,password,keyboard- ...
      (comp.os.vms)
    • login with public keys
      ... ssh client to a redhat server with openssh. ... debug: Entering event loop. ... server offers auth methods 'publickey,password,keyboard-interactive'. ...
      (SSH)
    • Re: Slow connecting process
      ... > that long to time out on the reverse DNS lookup. ... I am connecting by IP-Adress, so how is DNS needed in this process? ... debug: SshAppCommon/sshappcommon.c:154: Allocating global SshRegex ... server offers auth methods 'publickey,password'. ...
      (comp.security.ssh)
    • SUMMARY: Publickey authentication with ssh
      ... Basiclly to get public key authentication to work I had to copy ... Subject: Publickey authentication with ssh ... debug: SshAppCommon/sshappcommon.c:185: Allocating global SshRegex context. ... server offers auth methods 'publickey,password'. ...
      (Tru64-UNIX-Managers)