X-Recipient: archive-cygwin AT delorie DOT com X-SWARE-Spam-Status: No, hits=-2.4 required=5.0 tests=AWL,BAYES_00,SPF_HELO_PASS,TW_BN,T_RP_MATCHES_RCVD X-Spam-Check-By: sourceware.org To: cygwin AT cygwin DOT com From: Andrew DeFaria Subject: Re: Putty and pre-shared keys with Cygwin's sshd Date: Mon, 23 Jan 2012 12:24:35 -0800 Lines: 121 Message-ID: References: <1910391597 DOT 20120121163937 AT mtu-net DOT ru> <1326199340 DOT 20120122003455 AT mtu-net DOT ru> <1838817585 DOT 20120122072825 AT mtu-net DOT ru> <20120123095700 DOT GC2456 AT calimero DOT vinschen DOT de> <20120123193818 DOT GG2456 AT calimero DOT vinschen DOT de> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:9.0) Gecko/20111222 Thunderbird/9.0.1 In-Reply-To: <20120123193818.GG2456@calimero.vinschen.de> X-Stationery: 0.7.7 X-IsSubscribed: yes Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm Precedence: bulk List-Id: List-Unsubscribe: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com On 1/23/2012 11:38 AM, Corinna Vinschen wrote: > On Jan 23 11:01, Andrew DeFaria wrote: >> On 1/23/2012 1:57 AM, Corinna Vinschen wrote: >>>> -----BEGIN DSA PRIVATE KEY----- >>>> MIIBuwIBAAKBgQDI+RkFLTib52+4+OzI+035r8fIConadaJuXNd+ZRSOvoLJar44 >>>> 1m7jgSnp2A52LJ8LJeC99c7NQ1BBoHueRkgBWReH7orWH2T/vlFrPRgIU48vvgPH >>>> 4OrLFRtmN/uYj/BTbWFilN2jFZiiESSr4pSOPNNSblqj+UYXfFxc2ZrhIQIVANFm >>>> lV9qPmupo+/ZQqw1uTRypqve98yI2ZbXTuwIFLAps2T4rQKjmgmfghNWgmUEP0Sm >>>> V8qEfW8JvSh773fwYgtsAfos/+GPqc7V+UysKT2Na+5sOgqALSX6yfLBi0xAA2Iy >>>> ToRtrHupAoGAOS7f1yopMnELx7GhAtEtREN1zDikwa8dVhilM1M38+eZH4Z0Wd/3 >>>> H9W2iKKYjgj8lIIYGiXUxjEWhA3n/3N6HDT0O5X97Pp+dM7oHlAaKtGl0Y9ao+Zn >>>> SmXSquCsokL+1mh1baIe+VcyV2EA7Uat/B0zIlGpwfq4bQv0DmCjl4gCFDBh6pvn >>>> ckhR34s8s2jaQnkdgv+p >>>> -----END DSA PRIVATE KEY----- >>>> >>>> Whereas all of the lines of my ~/.ssh/authorized_keys files are >>>> single, loooong lines. >>> Maybe you *should* read the man pages. The above is the private part of >>> the key. authorized_keys is the file on the server side so it hold only >>> public keys. >> You're right. I made a mistake. Corrected it: > No, you didn't. OK I'll go with you. I didn't make a mistake! ;-) > Your mistake is not to read the man pages and apparently you still didn't. I'm not saying that there isn't another mistake there somewhere. You said I used the private part of the key. You were right. I used the wrong part. So I changed it to the public part of the key. That's what I meant. > >> Ltsdo-adefaria:cat /tmp/sshkey_public >> ---- BEGIN SSH2 PUBLIC KEY ---- >> Comment: "dsa-key-20120121" >> AAAAB3NzaC1kc3MAAACBAMj5GQUtOJvnb7j47Mj7Tfmvx8gKidp1om5c135lFI6+ >> gslqvjjWbuOBKenYDnYsnwsl4L31zs1DUEGge55GSAFZF4fuitYfZP++UWs9GAhT >> jy++A8fg6ssVG2Y3+5iP8FNtYWKU3aMVmKIRJKvilI4801JuWqP5Rhd8XFzZmuEh >> AAAAFQDRZu5keejWsFQn7+ZUlgf5RNrT/QAAAIEAjt/rOWTGhZz7SOnHjsL6lSn4 >> E1aCZQQ/RKZXyoR9bwm9KHvvd/BiC2wB+iz/4Y+pztX5TKwpPY1r7mw6CoAtJfrJ >> 8sGLTEADYjJOhG2se6kAAACAOS7f1yopMnELx7GhAtEtREN1zDikwa8dVhilM1M3 >> 8+eZH4Z0Wd/3H9W2iKKYjgj8lIIYGiXUxjEWhA3n/3N6HDT0O5X97Pp+dM7oHlAa >> KtGl0Y9ao+ZnSmXSquCsokL+1mh1baIe+VcyV2EA7Uat/B0zIlGpwfq4bQv0DmCj >> l4g= >> >> Added this to ~/.ssh/authorized_keys. Still fails - same way. Does >> OpenSSH accept these multiline keys? > $ man sshd Could you be a bit more vague! ;-) Look, the public key that puttygen saves looks like the above. It's multilined. That's why I asked "Does OpenSSH accept these multiline keys". You could answer that question but instead you give me a cryptic reference. From what I read there no it doesn't accept such keys and I didn't think it did. Can you see my confusion here?!? Geeze! The man page is saying it's gotta be one line but puttygen is giving me multiple lines. Hence confusion so I asked a question which you could have simply answered directly rather than indirectly. Yes there's also an area in the puttygen window where it says "copy and pastes this for OpenSSH". And I did, several times, and each time it failed. So I asked another question. I don't think I'm being unreasonable here. >> I think the problem is that my home directory is on a file server >> and that file server is not playing nice. By this I mean: >> >> Ltsdo-adefaria:touch foo >> Ltsdo-adefaria:ls -l foo >> -rw-r--r-- 1 adefaria clearusers 0 Jan 23 10:59 foo >> Ltsdo-adefaria:chmod 600 foo >> Ltsdo-adefaria:ls -l foo >> -rw-r--r-- 1 adefaria clearusers 0 Jan 23 10:59 foo >> Ltsdo-adefaria:df . >> Filesystem 1K-blocks Used Available Use% Mounted on >> //fs-irva-82/adefaria 5242880 343572 4899308 7% /home/adefaria > What does `mount' print for this mount point? //fs-irva-82/adefaria on /home/adefaria type netapp (binary,posix=0,user) My /etc/fstab entry is: //fs-irva-82/adefaria /home/adefaria smb binary,posix=0,user 0 0 >> Ltsdo-adefaria:echo $CYGWIN >> ntsec smbntsec winsymlinks nodosfilewarning > You also didn't read the User's Guide for a while... > http://cygwin.com/cygwin-ug-net/using-cygwinenv.html#cygwinenv-removed-options What can I say, "old habits die hard". But I'm willing to change them - I just didn't know this changed... Thanks for the reference. I will change my /etc/fstab to be more correct. Not sure if I can get the mount point unbusy right now as I'm busy working but will do so when I can and report back. I think this will solve a lot of my problems though. Managed to remount my home directory. Well that didn't work: Ltsdo-adefaria:echo $CYGWIN winsymlinks nodosfilewarning Ltsdo-adefaria:grep adefaria /etc/fstab //fs-irva-82/adefaria /home/adefaria smb binary,posix=0,user,acl 0 0 Ltsdo-adefaria:pwd /home/adefaria Ltsdo-adefaria:touch foo Ltsdo-adefaria:ls -l foo -rw-r--r-- 1 adefaria clearusers 0 Jan 23 12:21 foo Ltsdo-adefaria:chmod 600 foo Ltsdo-adefaria:ls -l foo -rw-r--r-- 1 adefaria clearusers 0 Jan 23 12:21 foo Ltsdo-adefaria:mount | grep defaria //fs-irva-82/adefaria on /home/adefaria type netapp (binary,posix=0,user) Ltsdo-adefaria: >> Ltsdo-adefaria: >> >> I've run across this before where the remote, often, samba server is >> not handling permissions like a Windows SMB server would. > Samba can handle permissions if it's configured to do so. But I saw > Samba being configured to behave like FAT a lot. I think this explains my problems with sharing my Unix home directory with Cygwin for a while now. -- Andrew DeFaria "640K ought to be enough for anybody." - Bill Gates, 1981 -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple