Re: I am having serious difficulty getting host based authenication working with ssh

From: Brett <brett(at)peakcomm.org>
Date: Mon Mar 03 2003 - 00:12:49 EST

Thanks,

I am getting closer but I am still having some problems even using ssh to localhost. I have learned that for some mysterious reason, not all of the options in the ssh_config file are not being read when I excute ssh, even though they are under the section "*". I have had to placed of your recommended options on the command line to get them to work. The command I am running is..

ssh -v -o "HostbasedAuthentication yes" -o "PreferredAuthentications hostbased" -o "RhostsRSAAuthentication no" -o "RhostsAuthentication yes" -o "StrictHostKeyChecking no" -o "CheckHostIP no" -o "UsePrivilegedPort yes" -o "RSAAuthentication no" localhost -2

It seems like rhost authenication is working all the way until the last checking when I am getting an "debug1: userauth_hostbased: no more client hostkeys" in the client debug. On the server the error is "check_key_in_hostfiles: key not found for xxxx". Does anyone have any idea why this is happening?? I have disabled RSAAuthencation. The error looks like it is checking the host key.

Attached is the dump of the client and server during this failed communications. Thanks in advance for any help you can give me. I am really getting frustrated. Hopefully, this can be resolved but I end up in the mental hospital. :)

Thanks

Brett

Server dump

debian.peakcomm.org.
Mar 3 00:00:12 debian sshd[7511]: debug2: auth_rhosts2: clientuser root hostname debian.peakcomm.org ipaddr 127.0.0.1

Mar  3 00:00:12 debian sshd[7511]: debug1: temporarily_use_uid: 0/0 (e=0)
Mar  3 00:00:12 debian sshd[7511]: debug1: restore_uid
Mar  3 00:00:12 debian sshd[7511]: debug1: temporarily_use_uid: 0/0 (e=0)
Mar  3 00:00:12 debian sshd[7511]: debug1: restore_uid
Mar  3 00:00:12 debian sshd[7511]: debug2: userauth_hostbased: access

allowed by auth_rhosts2
Mar 3 00:00:12 debian sshd[7511]: debug1: temporarily_use_uid: 0/0 (e=0) Mar 3 00:00:12 debian sshd[7511]: debug2: key_type_from_name: unknown key type '1024'
Mar 3 00:00:12 debian sshd[7511]: debug1: restore_uid Mar 3 00:00:12 debian sshd[7511]: debug2: check_key_in_hostfiles: key not found for debian.peakcomm.org

Mar  3 00:00:12 debian sshd[7511]: debug1: temporarily_use_uid: 0/0 (e=0)
Mar  3 00:00:12 debian sshd[7511]: debug1: restore_uid
Mar  3 00:00:12 debian sshd[7511]: debug2: check_key_in_hostfiles: key

not found for debian.peakcomm.org
Mar 3 00:00:12 debian sshd[7511]: debug1: Calling cleanup 0x8052b48(0x0) Mar 3 00:00:12 debian sshd[7511]: debug1: Calling cleanup 0x806be4c(0x0)

Client dump
ebug1: next auth method to try is hostbased debug1: Remote: Accepted by .shosts.
debug1: Remote: Accepted host debian.peakcomm.org ip 127.0.0.1 client_user root server_user root
debug1: authentications that can continue: publickey,password,keyboard-interactive,hostbased debug1: Remote: Accepted by .shosts.
debug1: Remote: Accepted host debian.peakcomm.org ip 127.0.0.1 client_user root server_user root
debug1: authentications that can continue: publickey,password,keyboard-interactive,hostbased debug1: userauth_hostbased: no more client hostkeys debug1: no more auth methods to try
Permission denied (publickey,password,keyboard-interactive,hostbased). debug1: Calling cleanup 0x8063a9c(0x0)

Roger wrote:

> Hi Brett,
Received on Mon Mar 3 14:27:25 2003