This is one of many many possibilities... 14 posts Ars Technica > Forums > Operating Systems & Software > Linux Kung Fu Jump to: Select a forum ------------------ Hardware & Tweaking It exists already in the file ~/.ssh/authoreized_keysTutorials How To Set Up SSH With Public-Key Authentication On Debian Etch > Log in with Facebook Log in with Twitter Log in with I followed this HowTo http://www.debian-administration.org/articles/152 and I've read numerous threads here at LQ and on the web but I cannot get this to function! I had to remove group and other write permissions to my home directory and then everything worked: chmod go-w ~/ Looking at /var/log/auth.log what what helped me figure out what was this content
share|improve this answer edited Feb 26 at 14:26 muru 71.6k13130182 answered Mar 7 '12 at 12:56 xeyes 44132 Thank's! Any ideas? fandingo "I need an adult" Ars Praefectus Registered: Oct 4, 2007Posts: 3078 Posted: Mon Dec 09, 2013 3:20 pm GRedner wrote:Thanks for pointing me in the right direction fandingo. jeenam View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by jeenam 06-06-2007, 03:15 PM #4 lefty.crupps Member Registered: Apr 2005 Location: Minneap http://unix.stackexchange.com/questions/36540/why-am-i-still-getting-a-password-prompt-with-ssh-with-public-key-authentication
This seems to be unkosher from SELinux' point of view - is there a better way?The best way to prevent errors like this is to not put stuff in places where share|improve this answer answered Oct 30 '14 at 3:39 Alexander Taylor 2,03622036 This is exactly what happened to me! Related 2SSH public key authentication - can one public key be used for multiple users?1How do you manage ssh keys to add a second user?4ssh still accepts password authentication despite being
Coworker throwing cigarettes out of a car, I criticized it and now HR is involved Are human fetal cells used to produce Pepsi? There may be a little more information here. If you get the passphrase prompt now, then congratulations, you're logging in with a key! Authentication Refused: Bad Ownership Or Modes For Directory If you are using the standard port 22, you can ignore this tip.
As long as the permissions are correct for .ssh and the underlying files are correct and the PermitRootLogin line of sshd_config is set to yes you should be good. Ssh Asking For Password When It Shouldn't martygoody View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by martygoody 11-12-2011, 10:17 AM #14 _anonymous LQ Newbie Registered: Nov 2011 Posts: Could fix other odd problems.) –ospalh Sep 24 '15 at 7:58 | show 2 more comments up vote 50 down vote setting ssh authorized_keys seem to be simple but hides some But, of course, you then have to use the same public key for every users (not good).
Sign into your account, or create a new one, to start interacting. Authorized_keys Not Working but any access with putty will normally need the password too. The former will allow you to spit out summary reports of SELinux violations that are semi-human readable while the latter can generate significantly more indepth reports as to the violation. That extra time should be enough to log in to any computers you have an account on, delete your old key from the .ssh/authorized_keys file, and add a new key.
It's never transmitted over the Internet, and the strength of your key has nothing to do with the strength of your passphrase. https://blog.codefront.net/2007/02/28/debugging-ssh-public-key-authentication-problems/ This was my mistake! Passwordless Ssh Not Working Linux I have edited the ssh_config file (both on local machine and server) to use RSAAuthentication yes PubkeyAuthentication yes and restarted the sshd server on both machines. Ssh No Password Prompt You can work around this by issuing the command like this: ssh-copy-id"
Find More Posts by alunduil 06-06-2007, 02:48 PM #3 jeenam Member Registered: Dec 2006 Distribution: Slackware 11 Posts: 144 Rep: Try copying ~/.ssh/authorized_keys2 to ~/.ssh/authorized_keys. news Although the daemon allows password-based authentication, exposing a password-protected account to the network can open up your server to brute-force attacks. The remoteuser should not be root! This directory should have 755 permissions and be owned by the user. Ssh Asking For Password Everytime
Until then, please do not use answers as a workaround. –Nathan Tuggy May 8 '15 at 1:31 This does not provide an answer to the question. you should use ssh-copy-id -i path/to/key_name.pub [email protected]_name 3. Last edited by chrism01; 05-14-2009 at 08:37 PM. have a peek at these guys fandingo "I need an adult" Ars Praefectus Registered: Oct 4, 2007Posts: 3078 Posted: Thu Dec 05, 2013 5:10 pm GRedner wrote:Some further googling suggests that SELinux may be upset because my
Its just this new user on the remote side isn't working. Ssh Force Prompt For Password How tiny is a Tiny spider? Our problem was that login worked from one client but not from another (the .ssh directory was NFS mounted and both clients were using the same keys).
Your SSH key passphrase is only used to protect your private key from thieves. It turns out the "do not edit this file manually" warning at the top of the file was not joking. it will set up all the permissions on the remote end and things should "just work" from that point on. Ssh Prompt For Password Presumably that means it also works on Lenny.
Visit the following links: Site Howto | Site FAQ | Sitemap | Register Now If you have any problems with the registration process or your account login, please contact us. [email protected]'s password: If you are not prompted for the passphrase, and instead get just the [email protected]'s password: prompt as usual with password logins, then read on. After adding it everything works fine. check my blog You previously marked this answer as accepted.
September 19, 2012 37k views Hello, I followed the SSH Keys tutorial here at DO but the server still prompts for my user password (not passphrase) when I login. But, when I put my SSH Public Key in the authorized_keys file, the server continues to ask me the password. What should I do after sending a file to print with a typo? Otherwise, everything you've done sounds correct.
Banged my head against the wall for a half hour. Is there a way to turn this on? –Steve Robbins Oct 11 '13 at 18:48 1 Logs might be in /var/log/secure if you don't have a /var/log/auth.log –CoverosGene Jul 17 Are human fetal cells used to produce Pepsi? Your problem is fairly straightforward:/other/disk/$USER/ needs to be user_home_dir_t.
Thanks for any advice Last edited by lefty.crupps; 06-06-2007 at 11:01 AM. This drove me nuts for month, had the exact same problem with a group-writeable home dir! An SSH key passphrase is a secondary form of security that gives you a little time when your keys are stolen. Reply Log In to Comment 0 eokyere October 27, 2012 This is a bit confusing for me, as I am considering setting up an account.
Blogs Recent Entries Best Entries Best Blogs Blog List Search Blogs Home Forums HCL Reviews Tutorials Articles Register Search Search Forums Advanced Search Search Tags Search LQ Wiki Search Tutorials/Articles Search And if yes, how? SSH will ignore the file if it does not have restrictive permissions. –Navin Oct 31 '14 at 5:54 this is the best answer! –Bobo Feb 2 '15 at 14:17 ssh-keygen -t rsa -b 4096 Password Authentication The main problem with public key authentication is that you need a secure way of getting the public key onto a computer before you
For example: Host Cloud Hostname cloud.theclouds.com User git IdentityFile ~/.ssh/config/mykey # This is correct # IdentityFile ~/.ssh/config/mykey.pub # This is incorrect share|improve this answer answered Nov 20 '13 at 22:09 user1576 If they are not, tell the ssh client to use them with the following command: ssh-add path/to/private/key share|improve this answer edited Apr 17 '14 at 8:46 answered Apr 17 '14 at root root unconfined_u:object_r:ssh_home_t:s0 authorized_keys-rw-------. If you entered a passphrase while generating your client key, then you may try ssh-agent & ssh-add to achieve password-less connections in your session.
Yes, I'm sure. I have followed the directions.