Date: Thu, 25 Mar 2004 22:58:59 +0000 From: Jonathon McKitrick <jcm@FreeBSD-uk.eu.org> To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= <des@des.no>, freebsd-questions@freebsd.org Cc: freebsd-stable@freebsd.org Subject: Re: ssh no longer connecting automatically Message-ID: <20040325225859.GA22615@dogma.freebsd-uk.eu.org> In-Reply-To: <xzpd671ayqk.fsf@dwp.des.no> References: <20040221202305.GA78752@dogma.freebsd-uk.eu.org> <000e01c3f8bc$9ee42dc0$efe8fea9@unixsmith.com> <20040325023251.GA61864@dogma.freebsd-uk.eu.org> <xzpd671ayqk.fsf@dwp.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Mar 25, 2004 at 01:37:55PM +0100, Dag-Erling Smørgrav wrote: : Jonathon McKitrick <jcm@FreeBSD-uk.eu.org> writes: : > On Sat, Feb 21, 2004 at 03:52:27PM -0500, Christian W. Sung wrote: : > : 2. Copy the resulting id_rsa.pub to ~/.ssh/authorized_keys2 on the : > : remote machine you're trying to access, and if there's an : > : authorized_keys (without the ending 2), copy the key there as well. : : There is no difference between authorized_keys and authorized_keys2 : except the name. There is no point in having both. : : > neptune:~> ssh jcm@dogma.freebsd-uk.eu.org : > The authenticity of host 'dogma.freebsd-uk.eu.org (130.88.200.97)' can't be : > established. : > DSA key fingerprint is c4:81:d6:8d:48:0e:39:ba:b3:40:e2:52:62:18:d4:f5. : > Are you sure you want to continue connecting (yes/no)? yes : > Warning: Permanently added 'dogma.freebsd-uk.eu.org,130.88.200.97' (DSA) to : > the list of known hosts. : > key_verify failed for server_host_key : : Something's wrong with your .ssh/known_hosts. Running ssh with one or : more -v may give an indication of exactly what is wrong. Debug output follows. Interestingly, my laptop (running 4.8R) is working now. No password needed for any rsh operation to this site. But the same procedure on a 4.8-stable box (this one, now) gives this error: debug2: kex_parse_kexinit: debug2: kex_parse_kexinit: debug2: kex_parse_kexinit: first_kex_follows 0 debug2: kex_parse_kexinit: reserved 0 debug2: mac_init: found hmac-md5 debug1: kex: server->client aes128-cbc hmac-md5 none debug2: mac_init: found hmac-md5 debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug2: dh_gen_key: priv key bits set: 140/256 debug2: bits set: 519/1024 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug3: check_host_in_hostfile: filename /home/jcm/.ssh/known_hosts debug3: check_host_in_hostfile: match line 1 debug3: check_host_in_hostfile: filename /home/jcm/.ssh/known_hosts debug3: check_host_in_hostfile: match line 1 debug1: Host 'dogma.freebsd-uk.eu.org' is known and matches the DSA host key. debug1: Found key in /home/jcm/.ssh/known_hosts:1 debug2: bits set: 474/1024 debug1: ssh_dss_verify: signature incorrect key_verify failed for server_host_key neptune:~> : : DES : -- : Dag-Erling Smørgrav - des@des.no jm -- My other computer is your Windows box.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040325225859.GA22615>