X-Spam-Check-By: sourceware.org Message-ID: <44A6CBC9.3090707@cygwin.com> Date: Sat, 01 Jul 2006 15:23:53 -0400 From: "Larry Hall (Cygwin)" Reply-To: cygwin AT cygwin DOT com User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8) Gecko/20060112 Fedora/1.5-1.fc4.remi Thunderbird/1.5 Mnenhy/0.7.4.0 MIME-Version: 1.0 To: cygwin AT cygwin DOT com Subject: Re: Keeps asking password after putting the id_rsa.pub in ~/.ssh/authorized_keys on remote host References: <44A56460 DOT 2070603 AT noaa DOT gov> In-Reply-To: <44A56460.2070603@noaa.gov> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Tzung-Cheng Yang wrote: > Hi, > > I tried to make password_less sftp work. > > After I putting the id_rsa.pub in ~/.ssh/authorized_keys on remote host, > the sftp still keeps > asking password. > > I also changed the following on the /etc/ssh/sshd_config file on remote > hosts > > RSAAuthentication yes > PubkeyAuthentication yes > AuthorizedKeysFile .ssh/authorized_keys > > Anything to do to solve the problem? > > Here is the message > > $ sftp -v tcy AT nhic2 > Connecting to nhic2... > OpenSSH_4.3p2, OpenSSL 0.9.8b 04 May 2006 > debug1: Connecting to nhic2 [140.90.22.252] port 22. > debug1: Connection established. > debug1: identity file /cygdrive/h/.ssh/id_rsa type 1 > debug1: identity file /cygdrive/h/.ssh/id_dsa type -1 > debug1: Remote protocol version 2.0, remote software version OpenSSH_3.9p1 > debug1: match: OpenSSH_3.9p1 pat OpenSSH_3.* > debug1: Enabling compatibility mode for protocol 2.0 > debug1: Local version string SSH-2.0-OpenSSH_4.3 > debug1: SSH2_MSG_KEXINIT sent > debug1: SSH2_MSG_KEXINIT received > debug1: kex: server->client aes128-cbc hmac-md5 none > debug1: kex: client->server aes128-cbc hmac-md5 none > debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent > debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP > debug1: SSH2_MSG_KEX_DH_GEX_INIT sent > debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY > debug1: Host 'nhic2' is known and matches the RSA host key. > debug1: Found key in /cygdrive/h/.ssh/known_hosts:2 > debug1: ssh_rsa_verify: signature correct > debug1: SSH2_MSG_NEWKEYS sent > debug1: expecting SSH2_MSG_NEWKEYS > debug1: SSH2_MSG_NEWKEYS received > debug1: SSH2_MSG_SERVICE_REQUEST sent > debug1: SSH2_MSG_SERVICE_ACCEPT received > debug1: Authentications that can continue: > publickey,gssapi-with-mic,password > debug1: Next authentication method: publickey > debug1: Offering public key: /cygdrive/h/.ssh/id_rsa Please read and follow the problem reporting guidelines outlined here: > Problem reports: http://cygwin.com/problems.html Pay close attention to the portion of the guidelines that recommends *attaching* (not appending) your cygcheck output. Without this information, it's quite difficult to eliminate some of the common issues from the decision tree. My WAG is that /cygdrive/h is a network share. If that's the case, you need to look at: smbntsec in and -- Larry Hall http://www.rfk.com RFK Partners, Inc. (508) 893-9779 - RFK Office 216 Dalton Rd. (508) 893-9889 - FAX Holliston, MA 01746 -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/