X-Recipient: archive-cygwin AT delorie DOT com
X-Spam-Check-By: sourceware.org
Date: Wed, 10 Mar 2010 18:18:06 +0100
From: Corinna Vinschen <corinna-cygwin AT cygwin DOT com>
To: cygwin AT cygwin DOT com
Subject: Re: OpenSSH pubkey authentication failing after update to 5.4
Message-ID: <20100310171806.GC6505@calimero.vinschen.de>
Reply-To: cygwin AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
References: <hn8gjj$ci5$1 AT dough DOT gmane DOT org>  <20100310163244 DOT GA6505 AT calimero DOT vinschen DOT de>  <hn8jfb$ci5$2 AT dough DOT gmane DOT org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <hn8jfb$ci5$2@dough.gmane.org>
User-Agent: Mutt/1.5.20 (2009-06-14)
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

On Mar 10 18:04, Thorsten Kampe wrote:
> * Corinna Vinschen (Wed, 10 Mar 2010 17:32:44 +0100)
> > On Mar 10 17:15, Thorsten Kampe wrote:
> > > # 5.3 (old SSH)
> > > temporarily_use_uid: 500/513 (e=1105/513)
> > > trying public key file /home/admin/.ssh/authorized_keys
> > > fd 4 clearing O_NONBLOCK
> > > matching key found: file /home/admin/.ssh/authorized_keys, line 1
> > > Found matching DSA key: 1b:31:25:da:6f:89:17:e8:25:46:46:60:ed:6f:a2:6c
> > > 
> > > # 5.4 (new SSH)
> > > temporarily_use_uid: 500/513 (e=1105/513)
> > > trying public key file //.ssh/authorized_keys
> > > restore_uid: 1105/513
> > > temporarily_use_uid: 500/513 (e=1105/513)
> > > trying public key file //.ssh/authorized_keys
> > > restore_uid: 1105/513
> > > Failed publickey for admin from 149.44.136.129 port 2864 ssh2
> > [...]
> Okay, I figured it out, it's a bug. The problem comes from 
> "AuthorizedKeysFile .ssh/authorized_keys" in sshd_config (which is 
> according to the sshd_config man page the default). It looks like the 
> value was interpreted in OpenSSH 5.3 as a relative path (relative to the 
> user's home directory) and in 5.4 as an absolute path. Commenting out 
> this setting fixes the problem.

Confirmed.  As does changing it to

  AuthorizedKeysFile %h/.ssh/authorized_keys

If that was a deliberate change, it's not documented.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple