From owner-freebsd-questions@FreeBSD.ORG Thu Mar 25 14:59:03 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A89AB16A4CE; Thu, 25 Mar 2004 14:59:03 -0800 (PST) Received: from serenity.mcc.ac.uk (serenity.mcc.ac.uk [130.88.200.93]) by mx1.FreeBSD.org (Postfix) with ESMTP id 055BD43D39; Thu, 25 Mar 2004 14:59:03 -0800 (PST) (envelope-from jcm@FreeBSD-uk.eu.org) Received: from dogma.freebsd-uk.eu.org ([130.88.200.97]) by serenity.mcc.ac.uk with esmtp (Exim 4.20) id 1B6doS-000NZd-I6; Thu, 25 Mar 2004 22:59:00 +0000 Received: from dogma.freebsd-uk.eu.org (localhost [127.0.0.1]) i2PMx0uf022645; Thu, 25 Mar 2004 22:59:00 GMT (envelope-from jcm@dogma.freebsd-uk.eu.org) Received: (from jcm@localhost) by dogma.freebsd-uk.eu.org (8.12.10/8.12.6/Submit) id i2PMwxpY022644; Thu, 25 Mar 2004 22:58:59 GMT Date: Thu, 25 Mar 2004 22:58:59 +0000 From: Jonathon McKitrick To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= , freebsd-questions@freebsd.org Message-ID: <20040325225859.GA22615@dogma.freebsd-uk.eu.org> References: <20040221202305.GA78752@dogma.freebsd-uk.eu.org> <000e01c3f8bc$9ee42dc0$efe8fea9@unixsmith.com> <20040325023251.GA61864@dogma.freebsd-uk.eu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.4i X-Spam-Score: -4.9 (----) X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/) *1B6doS-000NZd-I6*YUiP3dd5nXc* cc: "Christian W. Sung" cc: freebsd-stable@freebsd.org Subject: Re: ssh no longer connecting automatically X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Mar 2004 22:59:03 -0000 On Thu, Mar 25, 2004 at 01:37:55PM +0100, Dag-Erling Smørgrav wrote: : Jonathon McKitrick writes: : > On Sat, Feb 21, 2004 at 03:52:27PM -0500, Christian W. Sung wrote: : > : 2. Copy the resulting id_rsa.pub to ~/.ssh/authorized_keys2 on the : > : remote machine you're trying to access, and if there's an : > : authorized_keys (without the ending 2), copy the key there as well. : : There is no difference between authorized_keys and authorized_keys2 : except the name. There is no point in having both. : : > neptune:~> ssh jcm@dogma.freebsd-uk.eu.org : > The authenticity of host 'dogma.freebsd-uk.eu.org (130.88.200.97)' can't be : > established. : > DSA key fingerprint is c4:81:d6:8d:48:0e:39:ba:b3:40:e2:52:62:18:d4:f5. : > Are you sure you want to continue connecting (yes/no)? yes : > Warning: Permanently added 'dogma.freebsd-uk.eu.org,130.88.200.97' (DSA) to : > the list of known hosts. : > key_verify failed for server_host_key : : Something's wrong with your .ssh/known_hosts. Running ssh with one or : more -v may give an indication of exactly what is wrong. Debug output follows. Interestingly, my laptop (running 4.8R) is working now. No password needed for any rsh operation to this site. But the same procedure on a 4.8-stable box (this one, now) gives this error: debug2: kex_parse_kexinit: debug2: kex_parse_kexinit: debug2: kex_parse_kexinit: first_kex_follows 0 debug2: kex_parse_kexinit: reserved 0 debug2: mac_init: found hmac-md5 debug1: kex: server->client aes128-cbc hmac-md5 none debug2: mac_init: found hmac-md5 debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug2: dh_gen_key: priv key bits set: 140/256 debug2: bits set: 519/1024 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug3: check_host_in_hostfile: filename /home/jcm/.ssh/known_hosts debug3: check_host_in_hostfile: match line 1 debug3: check_host_in_hostfile: filename /home/jcm/.ssh/known_hosts debug3: check_host_in_hostfile: match line 1 debug1: Host 'dogma.freebsd-uk.eu.org' is known and matches the DSA host key. debug1: Found key in /home/jcm/.ssh/known_hosts:1 debug2: bits set: 474/1024 debug1: ssh_dss_verify: signature incorrect key_verify failed for server_host_key neptune:~> : : DES : -- : Dag-Erling Smørgrav - des@des.no jm -- My other computer is your Windows box.