![[Google]]( http://blog.trollgod.org.uk/wp-content/plugins/easy-adsenser/google-light.gif)
I couldn’t manage to get public key authentication to work for the cygwin ssh server. It just kept rejecting my key for no apparant reason, the permissions on all the files were correct and the server itself was configured fine. The problem turned out to be windows permissions.
Failure output:
Connection from $IP port 36230 debug1: Client protocol version 2.0; client software version OpenSSH_3.8.1p1 Debian-8.sarge.4 debug1: match: OpenSSH_3.8.1p1 Debian-8.sarge.4 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_3.9p1 debug1: list_hostkey_types: ssh-rsa,ssh-dss debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: client->server aes128-cbc hmac-md5 none debug1: kex: server->client aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST received debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent debug1: expecting SSH2_MSG_KEX_DH_GEX_INI debug1: SSH2_MSG_KEX_DH_GEX_REPLY sent debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: KEX done debug1: userauth-request for user user service ssh-connection method none debug1: attempt 0 failures 0 Failed none for user from $IP port 36230 ssh2 debug1: userauth-request for user user service ssh-connection method publickey debug1: attempt 1 failures 1 debug1: test whether pkalg/pkblob are acceptable debug1: temporarily_use_uid: n/n (e=n/n) debug1: trying public key file /home/user/.ssh/authorized_keys debug1: restore_uid: (unprivileged) debug1: temporarily_use_uid: n/n (e=n/n) debug1: trying public key file /home/user/.ssh/authorized_keys debug1: restore_uid: (unprivileged) Failed publickey for user from $IP port 36230 ssh2
Fix:
setfacl -m u:system:r– ~ ~/.ssh ~/.ssh/authorized_keys
found here.
Related Posts
No related posts.