Date: Sat, 14 Sep 2019 13:20:59 +0200 From: Polytropon <freebsd@edvax.de> To: Aryeh Friedman <aryeh.friedman@gmail.com> Cc: FreeBSD Mailing List <freebsd-questions@freebsd.org> Subject: Re: OT: My ssh authorized_keys doesn't work with nfs/nis Message-ID: <20190914132059.207eef7e.freebsd@edvax.de> In-Reply-To: <CAGBxaXmyX-YT4=1aH5dCRT4sj0H1ZMxnOnKO4ctVf=vtWqY=5Q@mail.gmail.com> References: <CAGBxaXkVQNE6deyWs9JXh9vqmKz8tLc9HfqC8ZmBLrK2jv7p3A@mail.gmail.com> <0b5eed49-986a-d40e-7df9-971a47cb500e@FreeBSD.org> <CAGBxaXmyX-YT4=1aH5dCRT4sj0H1ZMxnOnKO4ctVf=vtWqY=5Q@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 14 Sep 2019 07:09:17 -0400, Aryeh Friedman wrote:
> I am using the default out of the box /etc/sshd_config for 11 and 12 that
> has only two uncommented out configs:
>
> AuthorizedKeysFile .ssh/authorized_keys
> Subsystem sftp /usr/libexec/sftp-server
>
> So unless I am reading the first one completely wrong then it uses
> ~user/.ssh/authorized_keys which is what the ls above is of.
>From "man 5 sshd_config":
AuthorizedKeysFile
Specifies the file that contains the public keys that can be used
for user authentication. AuthorizedKeysFile may contain tokens
of the form %T which are substituted during connection setup.
The following tokens are defined: %% is replaced by a literal
'%', %h is replaced by the home directory of the user being
authenticated, and %u is replaced by the username of that user.
After expansion, AuthorizedKeysFile is taken to be an absolute
path or one relative to the user's home directory. The default
is ``.ssh/authorized_keys''.
Maybe you can try to use "%h/.ssh/authorized_keys" or, if it applies,
"/usr/home/%u/.ssh/authorized_keys" to check if this is a path problem?
--
Polytropon
Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20190914132059.207eef7e.freebsd>