X-Recipient: archive-cygwin@delorie.com
X-SWARE-Spam-Status: No, hits=-2.5 required=5.0	tests=AWL,BAYES_00,SPF_HELO_PASS,TW_BN,T_RP_MATCHES_RCVD
X-Spam-Check-By: sourceware.org
To: cygwin@cygwin.com
From: Andrew DeFaria <Andrew@DeFaria.com>
Subject: Re: Putty and pre-shared keys with Cygwin's sshd
Date: Mon, 23 Jan 2012 11:01:13 -0800
Lines: 77
Message-ID: <jfkaps$2nc$1@dough.gmane.org>
References: <jfcsbt$eci$1@dough.gmane.org> <1910391597.20120121163937@mtu-net.ru> <jff23g$h5j$1@dough.gmane.org> <1326199340.20120122003455@mtu-net.ru> <jffqqg$gke$1@dough.gmane.org> <1838817585.20120122072825@mtu-net.ru> <jfgbda$8o9$1@dough.gmane.org> <C78DB4FD-1F9A-4AB3-9BD9-456DDE9F424F@intersystems.com> <jfi9mf$id9$1@dough.gmane.org> <20120123095700.GC2456@calimero.vinschen.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:9.0) Gecko/20111222 Thunderbird/9.0.1
In-Reply-To: <20120123095700.GC2456@calimero.vinschen.de>
X-Stationery: 0.7.7
X-IsSubscribed: yes
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie.com@cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com

On 1/23/2012 1:57 AM, Corinna Vinschen wrote:
> On Jan 22 16:30, Andrew DeFaria wrote:
>> On 1/22/2012 10:21 AM, Len Giambrone wrote:
>>> I believe that PuTTy is SSH2, while Cygwin is OpenSSH.  You can convert them using
>>> ssh-keygen:
>>>
>>> ssh-keygen -f putty_key -i>   openssh_key
>> I tried this. It didn't work. Same error as before.
>>
>> Read 8.2.12 of the Putty help file - had no idea there was a format
>> difference I had to do anything about! Tried what it said to do, use
>> Conversions: Export to OpenSSH. But that key looks like:
>>
>> Ltsdo-adefaria:more /tmp/sshkey
>> -----BEGIN DSA PRIVATE KEY-----
>> MIIBuwIBAAKBgQDI+RkFLTib52+4+OzI+035r8fIConadaJuXNd+ZRSOvoLJar44
>> 1m7jgSnp2A52LJ8LJeC99c7NQ1BBoHueRkgBWReH7orWH2T/vlFrPRgIU48vvgPH
>> 4OrLFRtmN/uYj/BTbWFilN2jFZiiESSr4pSOPNNSblqj+UYXfFxc2ZrhIQIVANFm
>> lV9qPmupo+/ZQqw1uTRypqve98yI2ZbXTuwIFLAps2T4rQKjmgmfghNWgmUEP0Sm
>> V8qEfW8JvSh773fwYgtsAfos/+GPqc7V+UysKT2Na+5sOgqALSX6yfLBi0xAA2Iy
>> ToRtrHupAoGAOS7f1yopMnELx7GhAtEtREN1zDikwa8dVhilM1M38+eZH4Z0Wd/3
>> H9W2iKKYjgj8lIIYGiXUxjEWhA3n/3N6HDT0O5X97Pp+dM7oHlAaKtGl0Y9ao+Zn
>> SmXSquCsokL+1mh1baIe+VcyV2EA7Uat/B0zIlGpwfq4bQv0DmCjl4gCFDBh6pvn
>> ckhR34s8s2jaQnkdgv+p
>> -----END DSA PRIVATE KEY-----
>>
>> Whereas all of the lines of my ~/.ssh/authorized_keys files are
>> single, loooong lines.
> Maybe you *should* read the man pages.  The above is the private part of
> the key.  authorized_keys is the file on the server side so it hold only
> public keys.
You're right. I made a mistake. Corrected it:

Ltsdo-adefaria:cat /tmp/sshkey_public
---- BEGIN SSH2 PUBLIC KEY ----
Comment: "dsa-key-20120121"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Added this to ~/.ssh/authorized_keys. Still fails - same way. Does 
OpenSSH accept these multiline keys?
>
>> Can anybody give me clear, concise but complete end to end
>> instructions on how to get this to work?
> There are tons of that in the net.  Just google for "putty openssh".
I followed http://unixwiz.net/techtips/putty-openssh.html pretty much 
exactly 'cept instead of Linux I'm using Cygwin. It didn't work. It 
still prompts me for my password.

I think the problem is that my home directory is on a file server and 
that file server is not playing nice. By this I mean:

Ltsdo-adefaria:touch foo
Ltsdo-adefaria:ls -l foo
-rw-r--r-- 1 adefaria clearusers 0 Jan 23 10:59 foo
Ltsdo-adefaria:chmod 600 foo
Ltsdo-adefaria:ls -l foo
-rw-r--r-- 1 adefaria clearusers 0 Jan 23 10:59 foo
Ltsdo-adefaria:df .
Filesystem            1K-blocks   Used Available Use% Mounted on
//fs-irva-82/adefaria   5242880 343572   4899308   7% /home/adefaria
Ltsdo-adefaria:echo $CYGWIN
ntsec smbntsec winsymlinks nodosfilewarning
Ltsdo-adefaria:

I've run across this before where the remote, often, samba server is not 
handling permissions like a Windows SMB server would.
-- 
Andrew DeFaria <http://defaria.com>
Does fuzzy logic tickle?


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple