[wplug] ssh RSA/DSA authentication to foreign machine

Jonathan S. Billings billings at negate.org
Thu Jun 5 21:12:44 EDT 2003 

First you have to generate ssh keys, using 'ssh-keygen'.  Then copy the 
contents of the client's ~/.ssh/id_dsa.pub into the 
~/.ssh/authorized_keys2 on the server.

If you've started an ssh-agent on your client machine (something that's 
now started automatically by a lot of distros, if you aren't sure, try 
'printenv' to see if SSH_AUTH_SOCK and SSH_AGENT_PID are set.

Try reading the man page for 'ssh-agent' and 'ssh-add'.

    Jonathan Billings
  billings at negate.org


On Thursday, June 5, 2003, at 08:26  PM, Alexandros Papadopoulos wrote:

> Hi list.
>
> I'm connecting via SSH to a CMU server (which I have no control over),
> entering my password all the time. I'd like to set up host key
> authentication. Is it possible to do so without root on the CMU server?
>
> I tried the suggestions in http://bumblebee.lcs.mit.edu/ssh2/ and thus
> copied my dsa public key to my home directory on the CMU server, but to
> no avail:
>
> OpenSSH_3.6.1p2 Debian 1:3.6.1p2-2, SSH protocols 1.5/2.0, OpenSSL
> 0x0090702f
> debug1: Reading configuration data /etc/ssh/ssh_config
> debug1: Rhosts Authentication disabled, originating port will not be
> trusted.
> [...]
> debug1: Remote protocol version 1.99, remote software version
> OpenSSH_3.4p1
> debug1: match: OpenSSH_3.4p1 pat OpenSSH*
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2 Debian 1:3.6.1p2-2
> debug1: SSH2_MSG_KEXINIT sent
> debug1: SSH2_MSG_KEXINIT received
> debug1: kex: server->client aes128-cbc hmac-md5 none
> debug1: kex: client->server aes128-cbc hmac-md5 none
> debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
> debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
> debug1: Host 'linux.andrew.cmu.edu' is known and matches the RSA host
> key.
> debug1: Found key in /home/alex/.ssh/known_hosts:1
> debug1: ssh_rsa_verify: signature correct
> debug1: SSH2_MSG_NEWKEYS sent
> debug1: expecting SSH2_MSG_NEWKEYS
> debug1: SSH2_MSG_NEWKEYS received
> debug1: SSH2_MSG_SERVICE_REQUEST sent
> debug1: SSH2_MSG_SERVICE_ACCEPT received
> debug1: Authentications that can continue:
> external-keyx,gssapi,publickey,password,keyboard-interactive
> debug1: Next authentication method: publickey
> debug1: Trying private key: /home/alex/.ssh/identity
> debug1: Trying private key: /home/alex/.ssh/id_rsa
> debug1: Trying private key: /home/alex/.ssh/id_dsa
> debug1: Next authentication method: keyboard-interactive
>
> Thanks
>
> -A
> -- 
> http://andrew.cmu.edu/~apapadop/pub_key.asc
> 3DAD 8435 DB52 F17B 640F  D78C 8260 0CC1 0B75 8265
> <mime-attachment>

More information about the wplug mailing list