X-Recipient: archive-cygwin AT delorie DOT com
X-SWARE-Spam-Status: No, hits=-2.2 required=5.0	tests=AWL,BAYES_00,SPF_HELO_PASS,T_RP_MATCHES_RCVD
X-Spam-Check-By: sourceware.org
To: cygwin AT cygwin DOT com
From: Andrew DeFaria <Andrew AT DeFaria DOT com>
Subject: Re: Putty and pre-shared keys with Cygwin's sshd
Date: Sat, 21 Jan 2012 18:03:59 -0800
Lines: 26
Message-ID: <jffqqg$gke$1@dough.gmane.org>
References: <jfcsbt$eci$1 AT dough DOT gmane DOT org> <1910391597 DOT 20120121163937 AT mtu-net DOT ru> <jff23g$h5j$1 AT dough DOT gmane DOT org> <1326199340 DOT 20120122003455 AT mtu-net DOT ru>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:9.0) Gecko/20111220 Thunderbird/9.0
In-Reply-To: <1326199340.20120122003455@mtu-net.ru>
X-Stationery: 0.7.7
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

On 01/21/2012 12:34 PM, Andrey Repin wrote:
> Ok, now we're talking. There's indeed a tricky part involved, let me 
> try to cover it for you. On puttygen part, it seems you did it right. 
> (Though, saving public key part is only required for ssh servers 
> compliant with RFC4716.) On connection part... seems like you've 
> supplied the right login name... On server part... First. Make sure 
> your ssh server is configured to allow DSA keys. RSA keys are more 
> common, as I've discovered. 
Let's remain focused. As the subject states, the "server" is Cygwin, 
running on my laptop. All I use is DSA myself. I can ssh to other 
Unix/Linux systems. They can ssh to me using preshared key. I can ssh to 
local host too. *I* use ssh, Cygwin's ssh and preshared keys. *Others* 
often don't use Cygwin and/or don't have OpenSSH installed and say "I 
have putty". I'm trying to help them. If it were me I'd just install 
Cygwin and OpenSSH and be done with it.
> And sometimes servers configured to disallow DSA key authentication, 
> even if they are offering DSA key themselves. Second, double-check 
> server log for reason to refuse the key. The top (IMO) reason to 
> refuse key authentication is wrong access mask on 
> ~/.ssh/authorized_keys file. It must not be group- or world-writable.
Well I checked my /var/log/sshd.log on my Cygwin laptop and it was of 0 
length. Even tried to reproduce the problem, got the same error but 
/var/log/sshd.log remains empty.
-- 
Andrew DeFaria <http://defaria.com>
A preposition must never be used to end a sentence with.


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple