RE: Going MAD trying to get scp working on Solaris8 (SSH-2.0-OpenSSH_ 3.4p1) - Pleeeese Help.

Andrew is right on the mark here. You have to generate keys with no passphrase, then on the server you want to transfer files to, you have to setup an authorized_keys file under the user account you are working with. Then for each server/user on the servers you want to trust, you need to create keys without passphrases, copy the id_dsa.pub key into the .ssh/authorized_keys file. Make sure the authorized_keys file permissions are set to 640 otherwise it will fail. There is another way to do file transfers without password challenges but that requires a key agent to be running. Go to the following URL for information on both:

http://www.akadia.com/services/ssh_agent.html

Hope this helps,

-Wes

-----Original Message-----
From: Mak, Andrew [mailto:Andrew.Mak@team.telstra.com] Sent: Wednesday, June 18, 2003 3:47 PM
To: Wright, Gary; secureshell@securityfocus.com Subject: RE: Going MAD trying to get scp working on Solaris8 (SSH-2.0-OpenSSH_ 3.4p1) - Pleeeese Help.

Gary,

Have you generate a key pair with no passphrase and inserted the public key of the pair to the file /users/oraprod/.ssh/authorized_keys?

> Regards

Andrew Mak
DMO Systems Management - Telstra

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

> -----Original Message-----
/users/oraprod/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 1

> debug3: check_host_in_hostfile: filename
/users/oraprod/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 1

> debug1: Host 'devbox' is known and matches the RSA host key.

> debug1: Found key in /users/oraprod/.ssh/known_hosts:1

> debug1: bits set: 1557/3191

> debug1: ssh_rsa_verify: signature correct

> debug1: kex_derive_keys

> debug1: newkeys: mode 1

Do you need more help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

> debug1: SSH2_MSG_NEWKEYS sent

> debug1: waiting for SSH2_MSG_NEWKEYS

> debug1: newkeys: mode 0

> debug1: SSH2_MSG_NEWKEYS received

> debug1: done: ssh_kex2.

> debug1: send SSH2_MSG_SERVICE_REQUEST

> debug1: service_accept: ssh-userauth

> debug1: got SSH2_MSG_SERVICE_ACCEPT

Can we help you?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

> debug1: authentications that can continue:
password,keyboard-interactive
> debug3: start over, passed a different list
password,keyboard-interactive
> debug3: preferred publickey

> debug1: no more auth methods to try

> Permission denied (password,keyboard-interactive).

> debug1: Calling cleanup 0x3f4d0(0x0)

> lost connection

>
>
> Notice that SSH is stating that authentications it can use are

> sshd_config or config file but I can't see it. I've added the
may
> not be copied or used by anyone other than the addressee, nor
disclosed
> to any third party without our permission. There is no intention to
use
> of this email.
> Experian Limited (registration number 653331).>
> Registered office: Talbot House, Talbot Street, Nottingham NG1 5HF
>
Received on Fri Jun 20 00:34:25 2003