From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1Htk1N-0003Oq-CZ for garchives@archives.gentoo.org; Thu, 31 May 2007 12:44:53 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l4VChWwU004075; Thu, 31 May 2007 12:43:32 GMT Received: from gabriel.sub.uni-goettingen.de (gabriel.sub.uni-goettingen.de [134.76.163.126]) by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l4VCcsTS030560 for ; Thu, 31 May 2007 12:38:54 GMT Received: by gabriel.sub.uni-goettingen.de (Postfix, from userid 8) id E3B543246B5; Sat, 2 Jun 2007 08:55:38 +0200 (CEST) Received: from localhost (unknown [134.76.161.221]) by gabriel.sub.uni-goettingen.de (Postfix) with ESMTP id 6B5F93246B4 for ; Sat, 2 Jun 2007 08:55:38 +0200 (CEST) Date: Thu, 31 May 2007 14:38:53 +0200 From: Hans-Werner Hilse To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [perhaps OT] ssh from Gentoo into a RedHat server Message-Id: <20070531143853.8b66e0e0.hilse@web.de> In-Reply-To: <200705311142.58519.michaelkintzios@gmail.com> References: <200705302058.00119.michaelkintzios@gmail.com> <200705301742.35974.faccenda@gmx.net> <200705311142.58519.michaelkintzios@gmail.com> X-Mailer: Sylpheed 2.4.1 (GTK+ 2.10.12; i586-pc-linux-gnu) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spam-Checker-Version: SpamAssassin 2.64 (2004-01-11) on gabriel.sub.uni-goettingen.de X-Spam-Level: X-Spam-Status: No, hits=0.0 required=5.0 tests=AWL autolearn=ham version=2.64 X-Archives-Salt: d67012db-c677-4b70-83fa-f1a92d6ce483 X-Archives-Hash: 6a9a789981266626c67657d7ed0f9084 Hi, On Thu, 31 May 2007 11:42:48 +0100 Mick wrote: > > > Second, my id_dsa is my private key not my public key. My public > > > key is id_dsa.pub > > > > but you will need your private key to be authenticated. that's why > > it is *private*. > > That's right, so why does it: > ====================================== > debug1: Trying private key: /home/michael/.ssh/id_rsa <--this doesn't exist > debug1: Offering public key: /home/michael/.ssh/id_dsa <--this is my private key > ====================================== What is wrong with that? It just says it is trying to access id_rsa, not that there is one. So it fails, of course. So not existing key isn't a matter here. It's _debugging_ output, so not necessarily important information. Using the private key is absolutely normal. A test message is encrypted using it and is then being sent to the server, hence the term "offering". I don't see what you are wondering about here. > > > PS. Not sure if this is relevant but although my user name on the > > > server is mick, for reasons better known to him the sysadmin has > > > created my home directory as /home/mic - could it be that sshd is > > > looking for /home/mick? > > > > that messages isn't from the server, is from client running > > locally. but it doesnt matter for what you want. > > It matters if the server is trying to find id_dsa.pub in a > non-existing directory. But it _is_ a client message. It doesn't tell you where the server is searching. So yes, the server might be off track and searching in the wrong place. You could tell by monitoring the server's logs. sshd will always search in the home directory as specified in /etc/passwd (in the normal case) or more sophisticated solutions like LDAP or NSS. So make sure it really *is* configured as the home directory. If the target server is ancient, it might also be searching in ".ssh/authorized_keys2". Maybe DSA auth is disabled. Why don't you check server side logs (or let your sysadmin do that)? -hwh -- gentoo-user@gentoo.org mailing list