Hosting Provided By

Still prompts for password not passphrase

From: Bobby Patel <anup_patel(at)rogers.com>
Date: Thu Dec 05 2002 - 02:16:26 EST

I'm trying to ssh from one server to another. They are identical servers running Linux, and cobalt 550's. and the same version of ssh. I am currently using rsa keys (for ssh2). I have used the defaults, so the public file is id_rsa.pub. Now I want to ssh from server 2 to 1, so I have appended server 1's public key on to server 2's authorized_keys file (I have also tried authorized_key2). The perms set for the authorized_keys(2) file was 600. And the key take one line. But when I try to ssh in it still prompts for a password. I have cut some of the dead weight out of the debug, I have spent over 6 hours (over the past two days) trying to get this to work. I have both of these connecting to another server (server 3) and it works fine (server 3 is running "OpenSSH_3.4p1, SSH protocols 1.5/2.0, OpenSSL 0x0090605f").
Where as these two servers (server 1 & 2) are ("OpenSSH_2.9p2, SSH protocols 1.5/2.0, OpenSSL 0x0090600f").

Any help would be apprciated.

DEBUG
######

[backup3 .ssh]$ ssh -v -v -v backup@10.0.0.2 OpenSSH_2.9p2, SSH protocols 1.5/2.0, OpenSSL 0x0090600f

debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Seeding random number generator
debug1: Rhosts Authentication disabled, originating port will not be

trusted.

debug1: restore_uid
debug1: ssh_connect: getuid 511 geteuid 0 anon 1
debug1: Connecting to 10.0.0.2 [10.0.0.2] port 22.
debug1: temporarily_use_uid: 511/100 (e=0)
debug1: restore_uid
debug1: temporarily_use_uid: 511/100 (e=0)
debug1: restore_uid
debug1: Connection established.
debug1: read PEM private key done: type DSA
debug1: read PEM private key done: type RSA
debug1: identity file /home/.sites/70/site4/.users/96/backup3/.ssh/identity

type -1
debug3: No RSA1 key file
/home/.sites/70/site4/.users/96/backup3/.ssh/id_rsa.

debug2: key_type_from_name: unknown key type '-----BEGIN'
debug3: key_read: no key found
debug2: key_type_from_name: unknown key type 'Proc-Type:'
debug3: key_read: no key found
debug2: key_type_from_name: unknown key type 'DEK-Info:'
debug3: key_read: no key found
debug2: key_type_from_name: unknown key type '-----END'
debug3: key_read: no key found
debug1: identity file /home/.sites/70/site4/.users/96/backup3/.ssh/id_rsa

type 1
debug1: identity file /home/.sites/70/site4/.users/96/backup3/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_2.9p2 debug1: match: OpenSSH_2.9p2 pat ^OpenSSH Enabling compatibility mode for protocol 2.0

debug1: Local version string SSH-2.0-OpenSSH_2.9p2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit:

diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1

debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits set: 123/256
debug1: bits set: 1016/2049
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename

/home/.sites/70/site4/.users/96/backup3/.ssh/known_hosts2

debug3: check_host_in_hostfile: match line 1
debug1: Host '10.0.0.2' is known and matches the RSA host key.
debug1: Found key in

/home/.sites/70/site4/.users/96/backup3/.ssh/known_hosts2:1

debug1: bits set: 1019/2049
debug1: ssh_rsa_verify: signature correct
debug1: kex_derive_keys
debug1: newkeys: mode 1
Do you need help? 
In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software:Learn more about Pantek's Technical Support offerings
Place an order for 24/7/365 Technical Support here
Learn more about Pantek, who we are, and what we do
Chat with a Live Operator
Related securityfocus.com Links
bugtraq
certification
focus-bsd
focus-ids
focus-ih
focus-linux
focus-ms
focus-sun
focus-unix-other
focus-virus
forensics
incidents
libnet
linux-secnews
ms-secnews
pen-test
secpapers
secprog
sectools
secureshell
security-basics
securityjobs
sf-news
vuln-dev
webappsec
Request more information about Pantek
debug1: SSH2_MSG_NEWKEYS sent
debug1: waiting for SSH2_MSG_NEWKEYS
debug1: newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: done: ssh_kex2.
debug1: send SSH2_MSG_SERVICE_REQUEST
debug1: service_accept: ssh-userauth
debug1: got SSH2_MSG_SERVICE_ACCEPT
debug1: authentications that can continue:
publickey,password,keyboard-interactive

debug3: start over, passed a different list publickey,password,keyboard-interactive

debug3: preferred publickey,password,keyboard-interactive
debug3: authmethod_lookup publickey
debug3: remaining preferred: password,keyboard-interactive
debug3: authmethod_is_enabled publickey
debug1: next auth method to try is publickey
debug1: try privkey: /home/.sites/70/site4/.users/96/backup3/.ssh/identity
debug3: no such identity:

/home/.sites/70/site4/.users/96/backup3/.ssh/identity

debug1: try pubkey: /home/.sites/70/site4/.users/96/backup3/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: authentications that can continue:

publickey,password,keyboard-interactive
debug1: try privkey: /home/.sites/70/site4/.users/96/backup3/.ssh/id_dsa debug3: no such identity:
/home/.sites/70/site4/.users/96/backup3/.ssh/id_dsa

debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred: keyboard-interactive
debug3: authmethod_is_enabled password
debug1: next auth method to try is password

backup@10.0.0.2's password: Received on Thu Dec 5 12:25:00 2002

This message: [ Message body ]
Next message: Biju Perumal: "command prompt supression"
Previous message: Bill Schwalbe: "Re: ssh_exchange_identification error"
Reply: Marius Roets: "Problem using ssh protocol 2 dsa"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:51 EDT