From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stephen Samuel <samuel@bcgreen.com>
Subject: Re: SSH Athentification with public key
Date: Tue, 27 May 2003 10:22:59 -0700
Sender: linux-admin-owner@vger.kernel.org
Message-ID: <3ED39EF3.70706@bcgreen.com>
References: <oprptltevdfb0muc@gmane.org>
Mime-Version: 1.0
Content-Transfer-Encoding: QUOTED-PRINTABLE
Return-path: <linux-admin-owner@vger.kernel.org>
In-Reply-To: <oprptltevdfb0muc@gmane.org>
List-Id: <linux-admin.vger.kernel.org>
Content-Type: text/plain; charset="iso-8859-1"; 
To: =?ISO-8859-15?Q?Gerd_M=FCller?= <gerd.bomber.mueller@web.de>
Cc: linux-admin@vger.kernel.org

Gerd M=FCller wrote:
> Hello,
>=20
> i want to update hourly a remote mirror-server with rsync via ssh. In=
=20
> order to enable the file-server to establish a ssh-session without=20
> password prompt, i created on file-server a keypair with ssh-keygen -=
t=20
> rsa (empty passphrase) and copied the public key (id_rsa.pub) to the=20
> /root/.ssh/authorized_keys File (on mirror-server). This file didn't=20
> exist before.

Try:
	cd .ssh
	chmod og-w auth* . ..
	mv authorized_keys authorized_keys2

The authorized_keys file must be owned and readable by root,
(or owned and readable by the user that  is being authenticated for)
The authorized_keys file, the .ssh directory and your home directory
must ONLY be writable by the owner. They CANNOT be group-writable.

Matt Hemingway wrote:
 > Could be a couple things:
 >
 > 1. When you copied the id_rsa.pub file, did you do a copy and paste =
from an xterm window to an xterm window or did you sftp/scp/ftp the fil=
e over?  I had a similar=20
problem, where I had copied the contents from an xterm window to an xte=
rm window and instead of the lines wrapping at the end of the window, l=
ine breaks were inserted.=20
Each public key entry must be one line.
 >
 > 2. Make sure the authorized_keys file is owned and readable by root.
 >
 > Also, try ssh -vvv root@mirror-server and see if you get any usefull=
 info.   strace can come in handy as well.

if you're using the DSA or RSA public keys. They should go into the
authorized_keys2 file.
                ^
It's only identity.pub (the ssh1 public key file) who'se contents
get coppied into authorized_keys


--=20
Stephen Samuel +1(604)876-0426                samuel@bcgreen.com
		   http://www.bcgreen.com/~samuel/
Powerful committed communication, reaching through fear, uncertainty an=
d
doubt to touch the jewel within each person and bring it to life.

-
To unsubscribe from this list: send the line "unsubscribe linux-admin" =
in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html