Ubuntu Networking :: Ssh Public Key Authentication Only Works When Already Logged In?
Jan 6, 2010
I have an ssh (OpenSSH_5.1p1 Debian-6ubuntu2) client A and a server B set up for public key authentication as described in [URL]
The problem is the following: ssh asks for a password when connecting from A to B without any other ssh session going on between A and B; but if I connect from A to B whenever there is another ssh session between A and B, either I get prompted for the passphrase I used to encrypt the private key or I get logged automatically.
I already checked permissions on B: .ssh is 700 and authorized_keys is 600. I already tried "StrictModes no" in sshd_config. Printing debug information using DEBUG3 does not any useful insight. Moreover, there is no /var/log/secure (is it supposed to be there?)
Right now the computer is far far away from my reach, but when I configured the system I noted that whenever I was locally logged to B and then ssh'ed from A to B, I was logged in without any problem; whenever I was not logged in locally I was asked for a password. Note that at that time I was using a different public/private key pair whose private part had no passphrase.
how to know exactly what cipher is ssh/sshd using for a particular session? Is there a way to know any statistics for a given session (something like the ~s option in section 5 of [URL]
P.S. 2: does the following mean that ssh is using protocol 2.0 or something different than protocol 2.0?
(..........) sshd[2606]: debug1: Enabling compatibility mode for protocol 2.0
View 9 Replies
ADVERTISEMENT
Jul 6, 2011
I have a little problem
For years, I've been using SSH with public key authentication to connect to a remote server, and my private key is formatted like this:
Code...
I've tried creating a new key which uses DSA, but I got the same result...
Does anyone know what the cause to this might be?
View 1 Replies
View Related
Feb 6, 2010
I'm trying to connect to my Xubuntu box (zelda) remotely using my RSA key. I'm using Cygwin on my Windows box (link) to SSH in to the Xubuntu box. I've created the key and placed it in the authorized_keys file on my remote box. Here's where it gets weird. When I ssh into zelda the first time, it prompts me for my password. However, if I'm already connected to zelda and try to open another connection, it prompts me for my RSA passphrase. This is very confusing, and I have no idea what's going on.Here's my sshd_config file on zelda.
Code:
# Package generated configuration file
# See the sshd(8) manpage for details
[code]...
View 9 Replies
View Related
May 22, 2010
I'm trying to get OpenSSH public key authentication to work. My server runs ubuntu. My client is a windows machine, and I'm using cygwin. I tried using the instructions here: [URL]... If I test it out using this line: ssh -v -v -v -o PreferredAuthentications=publickey server.example.org
I get this:
debug3: no such identity: /home/Julie/.ssh/identity
debug1: Offering public key: /home/Julie/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug3: Wrote 368 bytes for a total of 1477
[Code]...
View 2 Replies
View Related
Dec 20, 2010
I'm trying to restrict command line ssh and yet keep NoMachine working, so I followed this post [URL]... and tried adding this to /etc/ssh/sshd_config:
AllowUsers nx@*.*.*.* paul@*.*.*.* *@::ffff:127.0.0.1 *@127.0.0.1
On restarting the ssh daemon other users can't login by the terminal, but I can. However, NoMachine won't log me in. I get: NX> 502 ERROR: Public key authentication failed. As a server side check:
[code]...
View 1 Replies
View Related
May 7, 2010
After years with Linux and using ssh on a daily basis I have to admit I've never setup public/private key authentication and I've never run passwordless logon to ssh. It's not that I've never tried, I have - I've just never got it working. That to me is an almost alien concept as I am a tinkerer at heart and rarely stop until something is working the way I'd like it to. I get the principle of what's going on but I've always had a mental block about it.
View 3 Replies
View Related
May 13, 2009
the only error message I can find comes from "dmesg|tail"all it shows is
"no IPv6 router"any body know what is going on here or where where to look for more clues the next time I get around public wifi Oh the windoze washers and apple polishers don't seem to have any problems at all
View 4 Replies
View Related
Jun 25, 2011
I'd like to ask one simple question I can't figure out how to solve.I've set up my public key authentication by generating the public key on my Windows box. Copied that into /root/.ssh/authorized_keysDisabled password authentication in /etc/ssh/sshd_config:
#Port 22
#Protocol 2,1
Protocol 2
[code]...
View 6 Replies
View Related
Jan 20, 2010
I want to setup SSH with DSA public key authentication between two servers
View 1 Replies
View Related
Jan 3, 2011
I often run into this and it's such a hassle that I have had no choice but to ignore it. But, I would like to run it properly but I don't understand why my sources list is 'wrong' or has incorrect info so that it's often not verified or authenticated. The public keyring is wrong or the source or both? I get these messages, for e.g.:
# apt-get update && apt-get install dmo-archive-keyring && apt-get update exit with result:
W: GPG error: http://unofficial.debian-maintainers.org squeeze Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9EEBC8DB9B9C3CB6
I probably don't need that but I ran into a similar error trying to authenticate the multimedia keyring. Not sure it worked but I am guessing the system works the same with all the authentications? I hope to understand what I'm doing wrong and what the process is.
View 3 Replies
View Related
Mar 27, 2010
So after tinkering for a while, I was able to configure ssh for private/public key authentication and disabled Password-Authentication. In the past I had some issues with people brute force trying passwords/usernames so I want to avoid this, but I need some form of secure FTP that now doesn't work due to the aforementioned setting.
View 2 Replies
View Related
Jan 28, 2011
I created a private/public pair. I put the public on github.But I can never push to github.Every time, it says public denied. In order to push, I need to do this:eval ssh-agentssh-add ~/.ssh/github_dsaThis is driving me nuts that I have to do this every time. So, I just put it in my ~/.bashrc file. I feel like that's a hack. Is this normal?
View 1 Replies
View Related
Jul 4, 2010
Im trying to create a public/private key for open ssh, I don't really know what difference between the two. I want it to all be one command and not have to hit enter after each command. Here is what I mean:i type "ssh-keygen"and it asks me were to save, then my paraphrase, then reenter the paraphrase.I just want to be I guess you could say unattended if that makes any sense.
View 1 Replies
View Related
Sep 6, 2010
Been using CentOS for a couple of weeks and have a few quirks I need help with.
This is a fresh install of CentOS 5.5. I'd love for VNC Server to start up as soon as the computer reboots. It seems my VNC Server only works when I log in using the GUI at the computer itself. After a reboot I can remotely SSH into it successfully, but cannot VNC to it. I then have to physically get to the computer and log into the GUI, and wa-la I can VNC to it. I have not edited any conf files - seeing as my last attempt at getting this working got me nowhere. I have only enabled Remote Desktop through the GUI.
View 8 Replies
View Related
Jun 1, 2011
i have setup auto ssh login for my server. And it works, but only when i have a active connection. if i use "ssh server.com" it asks for my password. If i then open a new terminal and issue "ssh server.com" it logs right in. I really don*t understand whats wrong.
I have tried setting up 2 virtual machines on my local computer and with the same setup it works fine.
SOLVED: my home folder was encrypted, so when no users were logged in the home folder was unmounted
View 2 Replies
View Related
Jul 9, 2015
I've installed it properly until it works now, it does send emails and receive them, but heres the problem.
1) it does not send emails to a certain domain, unless i do dpkg-reconfigure on exim4 and put the domain on allowed relay... can't i just put something on settings which allow to send emails to ALL domains?
2) EVERYONE can connect to the server by telnet from any position, terminal or pc, and just use an existing user to send emails to anyone.... example, i have testuser123 setted up in debian/exim4 .. then they simply write "mail from:testuser123@host.dot" and the server accepts it.. without even request an authentication for that. And this is a problem, because everyone can use my email addresses to send emails to whoever.. heaven for spammers/hackers..
View 6 Replies
View Related
Mar 24, 2010
I have trouble with rsa authentication:
I did create an rsa certificate with ssh-keygen using my root account on a client: ssh-keygen -t rsa -b 2048 no passphrase I did copy the rsa pub_key from my client to the server scp id_rsa sampleuser@sampleserver:/home/sampleuser/.ssh/authorized_keys
I did change the ownership to the "sampleuser" of the pub key file on the server: I trayd to connect:
ssh sampleuser@sapleserver
I get that: permission denied (public key)... I know I do smth wrong but I don't know what.
View 2 Replies
View Related
Jan 5, 2011
I'm trying to use xmms (or any other audio player) lauched from a remote computer but playing locally. I have a maverick server which has xmms installed. I launch an xdmcp (starnetssh) from a windows machine and I am able to open terminals, panels, emacs, etc but when I open xmms (or MOC, is the other one I tested), it simply doesn't play anything unless the same user is logged on the ubuntu box.
View 1 Replies
View Related
Apr 19, 2009
I am trying to install openssh server with public key authentication on CentOS.
But i am getting following error message: Disconnected: No supported authentication method available Server refused keys
My sshd_conf file is as follows:
View 1 Replies
View Related
May 26, 2011
I am attempting to set up an automatic transfer via sftp using public key authentication. I have created a public/private key pair to connect to the remote server without using a password. I have also been able to use this key pair to login from the command line: sftp -vvv -oPort=<server-side port> user@server.Debug info from interactive command:
Code:
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
[code]...
View 1 Replies
View Related
Apr 19, 2011
I've spent days trying to setup access properly from a public address to a monitoring server that works fine locally. Everything works from public access until I try to link to a CVS repository. The rancid CVS repository is set up as a separate server (virtualhost). It appears the referring link causes a DNS error (105: Server Not Found) when the CVS repository server is accessed from the public address. Things work fine when accessing via localhost.
Localhost link:
[URL]
Public link: (this results in 105 error caused by redirection (bold portion of link))
[URL]
Code:
Virtualhost config:
LoadModule jk_module /usr/lib/apache2/modules/mod_jk.so
JkWorkersFile /etc/apache2/workers.properties
JkLogFile /var/log/apache2/mod_jk.log
[code]....
View 2 Replies
View Related
Jul 21, 2010
I installed freenx-0.7.3-i486-1alien.tgz on the server (with Slack 12.1), all according to instructions. I installed the no machine nxclient 3.4.0-7 on the client (with Slack 12.2). I ran setup and configured. I used the default no-machine keys, not custom ones. Since authentication failed at the beginning, I enabled DBauthentication, and added my user and password, which seemed to allow authentication to occur.
Here is my node.conf:
# node.conf
#
# This file is provided by FreeNX. It should be placed either into
# /etc/nxserver/node.conf (FreeNX style) or /usr/NX/etc/node.conf
# (NoMachine NX style).....
View 93 Replies
View Related
Jul 12, 2010
How can I (as admin) find out when a certain user e.g. "karl" most recently logged in and most recently logged out of a system?
View 2 Replies
View Related
Aug 2, 2011
I'm trying to write a p2p file sharing program using python's built-in libraries. Everything is going well. The only thing is that i'd like to be able to use openssl public and private keys so only a host with the public key could access/decrypt the filesharing. I've gotten these libraries (httplib, basehttpserver, ssl, os) to work using just a pem file containing both the public and private keys but no success with them seperately. Can someone point me in the right direction or offer an alternative? PS, the goal of the project is to create an anonymous, decentralized, secure file sharing program. I want to be able to upload this to sourceforge so everyone can use it, if that's any incentive
View 2 Replies
View Related
Sep 24, 2010
I run the following file with the >log.log redirector and it does not capture errors.
#!/bin/bash
echo ************************BEGIN LOG******************************
date +"%m/%d/%Y %H:%M:%S $HOSTNAME"
cp -f /scripts/original/clamscans.log /scripts
[code]....
The following errors show up when I run from the file from the term window, but are not written to log.log:
tar: /public/public/clamscans/*.txt: Cannot stat: No such file or directory
tar: Error exit delayed from previous errors
mv: cannot stat `/public/public/clamscans/*.txt': No such file or directory
I know with windows you can add the 2>&1 to capture error data. Is there such a thing for Linux?
View 2 Replies
View Related
Mar 3, 2010
How can I forward all traffic from a public IP to another public IP. Let's say I have a first debian box named box1 with eth0 = 1.1.1.1 and eth0:1 = 1.1.1.2 and I want to forward all traffic from 1.1.1.2 to "box2" located somewhere else over the internet and having for eth0 2.2.2.2 Both 1.1.1.0/24 and 3.3.3.0/24 are public IP ranges.
View 1 Replies
View Related
Feb 27, 2011
logging in a server through putty in the same network when i executed last command its showing system ip logged in time and logged out time the output as followsthis is my system
oot pts1 xx.xx.xx day month date time in time out timeand similarly am geeting other than this likeroot :0day month date time still logged in this is from more than 3 days its logged in
View 2 Replies
View Related
Mar 8, 2010
I am having a small issue with my SSH usage. I have a main PC OS 9.10 that has a wired connection to the wireless router. My EEEPC 904HD is a wireless connection to the same router.
I use my main PC as my music store and of a night I sometimes listen to this via my EEEPC using the 'connect to server' icon. This has been the norm for some time.
Now of late my connection is being refused. Initially I thought it was to do with the SSH file of trusted connections as from time to time I have had to delete this file as rebooting of the router may have altered the IP of my machine. This usually solves the problem.
But I now have to use terminal to
Code:
ssh 192.168.?.?
I then have to confirm the connection and use the password to confirm fully. After that I can then use the GUI to get into my main PC, by inputting the IP, port, folder, user name and password, as usual.
Am I missing something? Nothing has been changed by me to have caused this so far as I know. I also have 2 folders set to share via samba over the network which works perfectly these folders are accessible by others on my home network. I use SSH for myself to fully access my folders on my PC from the EEEPC.
View 8 Replies
View Related
Dec 28, 2010
I was at the login screen on my desktop and I tried to hit my samba share from my Ubuntu laptop. Couldn't find it.I logged in, went back to my laptop, oh hey it worked.I have a static IP assigned to my desktop. Is there any reason why this backfired? I'm just trying to find the proper answer for this
View 1 Replies
View Related
Mar 8, 2010
This is actually for my router, but it's linux based, Anyway, I currently have a router running tomato linux firmware and at 30 minute intervals I have it send a log file of bandwidth usage to a network drive.
From there, a program calculates the bandwidth used by each IP by adding up all the totals recorded in the log files. The log files are the output of the router running the command:
Code:
iptables -L traffic_in -vn
What doesn't happen though, which I'd prefer, is that the bandwidth counts inside the router get cleared upon writing each log file. This way, I don't end up counting the same bandwidth use multiple times. So my question is, is there a way to erase/reset the data count in the iptables?
View 3 Replies
View Related
