Re: openssh public key (after upgrade) problem
On Fri, Jun 13, 2008 at 02:14:43PM +0200, Wojciech Ziniewicz wrote:
> Hello,
> in response to DSA-1571 I've upgraded almost all of my servers .
>
> But on server is acting strange.. I cannot use my key-auth anymore..
>
> After upgrading , it's openssh server generated pair of non-vulnerable
> keys, then on my client computers that authenticate on this server
> i've deleted the server's entry from known_hosts. Then i've uploaded
> new id_rsa.pub's on the upgraded server ( not sure if it was
> necessary)
> Everything should be done clearly , BUT ...
>
> 1. Node authenticating on the upgraded server get's something like
> that ,(after deletion of .ssh/known_hosts , also there should be no
> password):
>
If the key-auth's working...
[...]
> 2a) the same with verbosity :
>
>
> root@hlds:/# ssh -vp 60200 root@my.server.dot.com
> OpenSSH_4.3p2 Debian-9, OpenSSL 0.9.8c 05 Sep 2006
[...]
> debug1: Authentications that can continue: publickey,password
> debug1: Next authentication method: publickey
> debug1: Trying private key: /root/.ssh/identity
> debug1: Offering public key: /root/.ssh/id_rsa
> debug1: Authentications that can continue: publickey,password
> debug1: Trying private key: /root/.ssh/id_dsa
So publickey's not being used.
> debug1: Next authentication method: password
> root@my.server.dot.com's password:
>
> I've erased all the keys several times and started from the beggining
> but with no effect..
>
> help appreciated
Checkng the perms on /root/.ssh/* would be my starting point.
Reply to: