X-Recipient: archive-cygwin@delorie.com
X-SWARE-Spam-Status: No, hits=-0.4 required=5.0	tests=AWL,BAYES_00,RP_MATCHES_RCVD
X-Spam-Check-By: sourceware.org
From: Clayton Evans <CEvans@joshitech.com>
To: "cygwin@cygwin.com" <cygwin@cygwin.com>
Date: Fri, 14 Oct 2011 15:28:14 -0500
Subject: RE: openssh authentification
Message-ID: <C1D4084E4F215A4F890E70E3675DF633491EC860C8@JTISBS8.joshitech.local>
References: <C1D4084E4F215A4F890E70E3675DF633491EC860BE@JTISBS8.joshitech.local> <jifg97lcabu2le035n29f2mr1dk0pchod5@4ax.com> <C1D4084E4F215A4F890E70E3675DF633491EC860C4@JTISBS8.joshitech.local> <ferg9799a79cbj4q6djuote32bqup8rmo1@4ax.com> <C1D4084E4F215A4F890E70E3675DF633491EC860C5@JTISBS8.joshitech.local> <20111014200714.GA5531@jethro.local.lan>
In-Reply-To: <20111014200714.GA5531@jethro.local.lan>
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
X-IsSubscribed: yes
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by delorie.com id p9EKSdSX025295

> > > > > > debug1: Next authentication method: publickey
> > > > > > debug1: Offering RSA public key: /home/cevans/.ssh/id_rsa
> > > > > > debug3: send_pubkey_test
> > > > > > debug2: we sent a publickey packet, wait for reply
> > > > > > debug1: Authentications that can continue: 
> > > > > > publickey,password,keyboard-interactive
> > > > > > debug1: Offering DSA public key: /home/cevans/.ssh/id_dsa
> > > > > > debug3: send_pubkey_test
> > > > > > debug2: we sent a publickey packet, wait for reply
> > > > > > debug1: Authentications that can continue: 
> > > > > > publickey,password,keyboard-interactive
> > > > > > debug1: Offering ECDSA public key: /home/cevans/.ssh/id_ecdsa
> > > > > > debug3: send_pubkey_test
> > > > > > debug2: we sent a publickey packet, wait for reply
> > > > > > debug1: Authentications that can continue: 
> > > > > publickey,password,keyboard-interactive
> > > > > > debug2: we did not send a packet, disable method
> > > > >
> > > > > So all three of those keys were offered, but none were accepted.  Are the public keys for those in your ~/.ssh/authorized_keys file on the server?
> > > > 
> > > > I copied the .ssh/authorized_keys file from the client to the host before the ssh -vvv jti031 was done.
> > >
> > > OK, but that's not exactly what I asked.  The question is, is one of those public keys (/home/cevans/.ssh/id_rsa.pub, /home/cevans/.ssh/id_dsa.pub, or /home/cevans/.ssh/id_ecdsa.pub from the client) in ~/.ssh/authorized_keys on the server?
> > 
> > No, the id_*.pub files were not copied.   
> > 
> > I have now copied all three id_*.pub files from the client to the host.  I have rerun 'ssh -vvv jti031' with identical results. (At least diff finds the results to be identical.)
>
> I'd double-check StrictModes and PubkeyAuthentication in sshd_config.
> Also, there's no need to copy around your pub keys manually, use
> ssh-copy-id(1) for that.

ssh-copy-id requires that password authentication is working, which is not happening, so I tried manual moving of the files

Clayton Evans

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple