[PLUG] ssh_config

Jeff Abrahamson on 27 May 2004 19:40:02 -0000

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] ssh_config

From: Jeff Abrahamson <jeff@purple.com>

To: PLUG <plug@lists.phillylinux.org>

Subject: [PLUG] ssh_config

Date: Thu, 27 May 2004 15:38:38 -0400

Mail-followup-to: PLUG <plug@lists.phillylinux.org>

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mutt/1.5.5.1+cvs20040105i

I attempt to connect to a host and am told too many attempts. Running ssh -v confirms that ssh is trying the correct key only after trying many keys it should not have tried. Since I don't think there's any particular risk to this, I'm attaching here a copy of my ssh config and a transcript of what happened. The question is why ssh isn't first using the keys I've requested it use. Note that I begin by starting a new ssh-agent and add keys to it. (ssh-mult is just an alias to ssh-add key1 key2 ....) This is very frustrating, I thought I'd gotten this all working. Thanks much for any thoughts. -- Jeff Jeff Abrahamson <http://www.purple.com/jeff/> GPG fingerprint: 1A1A BA95 D082 A558 A276 63C6 16BF 8C4C 0D1D AE4B A cool book of games, highly worth checking out: http://www.amazon.com/exec/obidos/ASIN/1931686963/purple-20
jeff@asterix:jeff $ ssh-agent bash jeff@asterix:jeff $ ssh-add -L The agent has no identities. jeff@asterix:jeff $ ssh-mult Enter passphrase for id_dsa: Identity added: id_dsa (id_dsa) Identity added: id_rsa (id_rsa) Enter passphrase for jeff@vu-vlsi: Identity added: identity.vu (jeff@vu-vlsi) Enter passphrase for id_dsa.drexel: Identity added: id_dsa.drexel (id_dsa.drexel) Identity added: id_rsa.drexel (id_rsa.drexel) Enter passphrase for id_dsa.home: Identity added: id_dsa.home (id_dsa.home) Identity added: id_rsa.home (id_rsa.home) Enter passphrase for id_dsa.shell.sourceforge: Identity added: id_dsa.shell.sourceforge (id_dsa.shell.sourceforge) Identity added: id_rsa.shell.sourceforge (id_rsa.shell.sourceforge) jeff@asterix:jeff $ ssh -v jma2@shell.sf.net OpenSSH_3.6.1p2 Debian 1:3.6.1p2-12, SSH protocols 1.5/2.0, OpenSSL 0x0090703f debug1: Reading configuration data /home/jeff/.ssh/config debug1: Applying options for *.sf.net debug1: Applying options for * debug1: Reading configuration data /etc/ssh/ssh_config debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: Connecting to shell.sf.net [66.35.250.208] port 22. debug1: Connection established. debug1: identity file /home/jeff/.ssh/id_rsa.shell.sourceforge type 1 debug1: identity file /home/jeff/.ssh/id_dsa.shell.sourceforge type 2 debug1: identity file /home/jeff/.ssh/id_rsa type 1 debug1: identity file /home/jeff/.ssh/id_dsa type 2 debug1: Remote protocol version 1.99, remote software version OpenSSH_3.5p1 debug1: match: OpenSSH_3.5p1 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2 Debian 1:3.6.1p2-12 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'shell.sf.net' is known and matches the DSA host key. debug1: Found key in /home/jeff/.ssh/known_hosts:40 debug1: ssh_dss_verify: signature correct debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: SSH2_MSG_SERVICE_REQUEST sent debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Next authentication method: publickey debug1: Offering agent key: id_dsa debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Offering agent key: id_rsa debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Offering agent key: id_dsa.drexel debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Offering agent key: id_rsa.drexel debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Offering agent key: id_dsa.home debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Offering agent key: id_rsa.home debug1: Authentications that can continue: publickey,password,keyboard-interactive debug1: Offering agent key: id_dsa.shell.sourceforge Received disconnect from 66.35.250.208: 2: Too many authentication failures for jma2 debug1: Calling cleanup 0x80623b0(0x0) jeff@asterix:jeff $
# $OpenBSD: ssh_config,v 1.16 2002/07/03 14:21:05 markus Exp $ # This is the ssh client system-wide configuration file. See # ssh_config(5) for more information. This file provides defaults for # users, and the values can be changed in per-user configuration files # or on the command line. # Configuration data is parsed as follows: # 1. command line options # 2. user-specific file # 3. system-wide file # Any configuration value is only changed the first time it is set. # Thus, host-specific definitions should be at the beginning of the # configuration file, and defaults at the end. # Site-wide defaults for various options Host *.drexel.edu IdentityFile ~/.ssh/id_rsa.drexel IdentityFile ~/.ssh/id_dsa.drexel Host *.ece.vill.edu IdentityFile ~/.ssh/identity.vu Host diderot diderot.purple.com IdentityFile ~/.ssh/id_rsa.home IdentityFile ~/.ssh/id_dsa.home Host *.sourceforge.net *.sf.net IdentityFile ~/.ssh/id_rsa.shell.sourceforge IdentityFile ~/.ssh/id_dsa.shell.sourceforge Host * IdentityFile ~/.ssh/id_rsa IdentityFile ~/.ssh/id_dsa EscapeChar none
Attachment: signature.asc
Description: Digital signature

Prev by Date: Re: [PLUG] ssh keys: rsa vs dsa

Next by Date: Re: [PLUG] ssh keys: rsa vs dsa

Previous by thread: Re: [PLUG] ssh keys: rsa vs dsa

Next by thread: Re: [PLUG] ssh_config

Index(es):

Date

Thread