X-Recipient: archive-cygwin AT delorie DOT com
X-Spam-Check-By: sourceware.org
Date: Wed, 19 Nov 2008 12:32:29 +0100
From: Corinna Vinschen <corinna-cygwin AT cygwin DOT com>
To: cygwin AT cygwin DOT com
Subject: Re: Password authentication keeps kicking in on SSH client 	connection attempt.
Message-ID: <20081119113229.GH10351@calimero.vinschen.de>
Reply-To: cygwin AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
References: <818305050811150257q718d6990o7d18d0ba5ed0b42e AT mail DOT gmail DOT com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <818305050811150257q718d6990o7d18d0ba5ed0b42e@mail.gmail.com>
User-Agent: Mutt/1.5.16 (2007-06-09)
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

On Nov 15 10:57, tyrone donnelly wrote:
> Hi,
> 
> The password authentication keeps kicking in on SSH client connection attempt.
> 
> I know this question has been asked a zillion times. It seems that
> each problem becomes unique to specific builds,
> or new releases. I hope this is a simple solution, even if I feel dumb
> afterwards, I will learn and pass the information on :)
> 
> I am currently running a Windows virtual 2003 64 bit server.
> 
> I have installed the latest version of cygwin, as of today, and
> successfully connected to my own hostname over ssh using
> a public ssh rsa type2 key, after a hell of a headache I might add.
> 
> I have checked the permissions on my home and /.ssh directories on
> both host and client but could use some advice on these
> (please see below)
> 
> CLIENT
> 
> $ ls -ld $HOME
> drwx------+ 17 SYSTEM SYSTEM 0 Nov 14 15:46 /cygdrive/c (THIS APPEARS
> TO BE MY C:)

So you didn't read the user's manual?

> $ ls -l /.ssh

Do you mean ~/.ssh aka $HOME/.ssh?  /.ssh doesn't have a meaning for
users.

> total 6
> -rw--w--w- 1 DonnellT Users  403 Nov 14 13:56 authorized_keys (THIS IS
> A DOMAIN USER AND DOESNT APPEAR IN THE PASSWD FILE LOCALLY)

Which won't work.  sshd relies on the information given in /etc/passwd.
mkpasswd -d is your friend!

> -rw--w--w- 1 DonnellT Users 1675 Nov 14 13:56 id_rsa
> -rw--w--w- 1 DonnellT Users  403 Nov 14 13:56 id_rsa.pub

This is really bad.  sshd refuses files with write permissions for
others for security reasons.  Also make sure the user's home dir as well
as ~/.ssh have strict permissions and don't allow writing to group and
others.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/