Help - Search - Members - Calendar
Full Version: SSH from Linux to OS X
InsanelyMac Forum > Discuss and Learn > *nix
higgsy
Mar 14 2007, 06:04 AM
Hi there

I am trying to SSH from my Linux Box to OS X however instead of asking for the key it just asks for a password.....

I have created the key on the localhost via - ssh-keygen -t and have the following in my ~/.ssh folder:

-rw------- 1 root root 648 Mar 13 23:19 authorized_keys2
-rw------- 1 root root 1671 Mar 14 16:00 id_rsa (private key)
-rw------- 1 root root 391 Mar 14 16:00 id_rsa.pub
-rw-r--r-- 1 root root 396 Mar 13 20:50 known_hosts

On the remote host I have the following:

-rw------- 1 timhiggi timhiggi 391 Mar 14 16:24 authorized_keys (contains public key from localhost)
-r-------- 1 timhiggi timhiggi 1675 Mar 13 19:50 id_rsa
-rw-r--r-- 1 timhiggi timhiggi 419 Mar 13 19:50 id_rsa.pub

Here is the verbose output when I try to connect:


CODE
//slug~/.ssh# ssh -v username@remotehost
OpenSSH_4.5p1, OpenSSL 0.9.7l 28 Sep 2006
debug1: Reading configuration data /opt/etc/openssh/ssh_config
debug1: Connecting to remotehost [remotehost] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /root/.ssh/identity type -1
debug1: identity file /root/.ssh/id_rsa type 1
debug1: identity file /root/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_4.2
debug1: match: OpenSSH_4.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '192.168.1.101' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /root/.ssh/identity
debug1: Offering public key: /root/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Next authentication method: keyboard-interactive
Password:



Can anyone give me any ideas as to what is going wrong?

Regards

Tim
ipguy
Mar 14 2007, 06:53 AM
QUOTE(higgsy @ Mar 14 2007, 05:04 PM) *
Hi there

I am trying to SSH from my Linux Box to OS X however instead of asking for the key it just asks for a password.....

I have created the key on the localhost via - ssh-keygen -t and have the following in my ~/.ssh folder:

-rw------- 1 root root 648 Mar 13 23:19 authorized_keys2
-rw------- 1 root root 1671 Mar 14 16:00 id_rsa (private key)
-rw------- 1 root root 391 Mar 14 16:00 id_rsa.pub
-rw-r--r-- 1 root root 396 Mar 13 20:50 known_hosts

On the remote host I have the following:

-rw------- 1 timhiggi timhiggi 391 Mar 14 16:24 authorized_keys (contains public key from localhost)
-r-------- 1 timhiggi timhiggi 1675 Mar 13 19:50 id_rsa
-rw-r--r-- 1 timhiggi timhiggi 419 Mar 13 19:50 id_rsa.pub

Here is the verbose output when I try to connect:
CODE
//slug~/.ssh# ssh -v username@remotehost
OpenSSH_4.5p1, OpenSSL 0.9.7l 28 Sep 2006
debug1: Reading configuration data /opt/etc/openssh/ssh_config
debug1: Connecting to remotehost [remotehost] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /root/.ssh/identity type -1
debug1: identity file /root/.ssh/id_rsa type 1
debug1: identity file /root/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_4.2
debug1: match: OpenSSH_4.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '192.168.1.101' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /root/.ssh/identity
debug1: Offering public key: /root/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Next authentication method: keyboard-interactive
Password:

Can anyone give me any ideas as to what is going wrong?

Regards

Tim



to ssh into you osx box, using your key do...

ssh -i keyfile -l user ipaddress

you might want to edit sshd_config on osx and edit "PasswordAuthentication no" so you have to use the keyfile or no access....

as a note osx might not allow you ssh access as root, so ssh as username and su when your in
higgsy
Mar 14 2007, 10:59 AM
Hi

I tried doing:
CODE
ssh -i id_rsa -l username ipaddress
however it still asks for a password sad.gif

The verbose output now is:

CODE
//slug~/.ssh# ssh -v -i id_rsa -l username remotehost      
OpenSSH_4.5p1, OpenSSL 0.9.7l 28 Sep 2006
debug1: Reading configuration data /opt/etc/openssh/ssh_config
debug1: Connecting to remotehost [remotehost] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file id_rsa type 1
debug1: Remote protocol version 1.99, remote software version OpenSSH_4.2
debug1: match: OpenSSH_4.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'remotehost' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Offering public key: id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
Password:


The reason I want passwordless login is so I can use rsync for backup. Any other ideas?

Tim
ipguy
Mar 14 2007, 11:34 AM
QUOTE(higgsy @ Mar 14 2007, 09:59 PM) *
Hi

I tried doing:
CODE
ssh -i id_rsa -l username ipaddress
however it still asks for a password sad.gif

The verbose output now is:

CODE
//slug~/.ssh# ssh -v -i id_rsa -l username remotehost      
OpenSSH_4.5p1, OpenSSL 0.9.7l 28 Sep 2006
debug1: Reading configuration data /opt/etc/openssh/ssh_config
debug1: Connecting to remotehost [remotehost] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file id_rsa type 1
debug1: Remote protocol version 1.99, remote software version OpenSSH_4.2
debug1: match: OpenSSH_4.2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'remotehost' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Offering public key: id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
Password:


The reason I want passwordless login is so I can use rsync for backup. Any other ideas?

Tim


did you restart sshd after the config change ?
higgsy
Mar 15 2007, 11:38 AM
QUOTE(ipguy @ Mar 14 2007, 10:34 PM) *
did you restart sshd after the config change ?



Yes I've restarted both machines however its still not working.
ipguy
Mar 15 2007, 09:06 PM
QUOTE(higgsy @ Mar 15 2007, 10:38 PM) *
Yes I've restarted both machines however its still not working.



the only other thing it could be is the way you pasted the key into the authorized file.
lizardo
Mar 7 2008, 12:50 AM
Did you ever solve this issue? What ended up being the problem? I'm having a similar issue right now. Thanks for any follow-up help.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.