Bug 237

Summary: Key authentication failed with SSH 2 / Path wrong
Product: Portable OpenSSH Reporter: Stephane <s_guegan>
Component: sshdAssignee: OpenSSH Bugzilla mailing list <openssh-bugs>
Status: CLOSED DUPLICATE    
Severity: major    
Priority: P2    
Version: -current   
Hardware: SPARC   
OS: Solaris   

Description Stephane 2002-05-08 18:36:15 AEST 
Hye,

I've installed OpenSSH 3.1p1 on a SUN Sparc station running Solaris 2.6. I've 
also installed EGD 0.8 and OpenSSL 0.9.6c. 
The password authentication seems to work correctly but there is apparently a 
major problem with the key authentication. The OpenSSH server where sshd is 
running is an NFS client and the users account where the .ssh/ are stored are 
on an NFS partition. Both client & server are configured to use Protocol 2 only.

If I force ssh to follow authentication by SSH 2 and if I give the path to find 
the private key, here is the result : 
++++++++++++
client1@sgu:  slogin -v -i ~/.ssh/id_dsa -2 client1
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: next auth method to try is publickey
debug1: try pubkey: /export/home/sgu/.ssh/id_dsa
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: next auth method to try is keyboard-interactive
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: no more auth methods to try
Permission denied (publickey,keyboard-interactive).
debug1: Calling cleanup 0x33ecc(0x0)

If I try the same thing without options, I've got the following results :
++++++++++++++++++++
client1@sgu:  slogin -v client1
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: next auth method to try is publickey
debug1: try privkey: /export/home/sgu/.ssh/id_rsa
debug1: try pubkey: /export/home/sgu/.ssh/id_dsa
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: next auth method to try is keyboard-interactive
debug1: authentications that can continue: publickey,keyboard-interactive
debug1: no more auth methods to try
Permission denied (publickey,keyboard-interactive).
debug1: Calling cleanup 0x33ecc(0x0)

It seems that it doesn't "recognise" correctly SSH 2 and that the 'path' to the 
keys (public & private) are wrong. 
I've also noticed that it seems to skip completely the file "authorized_keys" 
even I specify it "as it is" in sshd_conf! 

I didn't finish completely the tests but apparently it's working fine with 
OpenSSH rel. < 3. 

Thanks in advance and do not hesitate if you need more informations.
Kind Regards,


S.G.
Comment 1 Antti Tapaninen 2002-05-08 19:25:35 AEST 
Probably yet another broken realpath() implementation,
pre 3.x releases only used realpath() for sftp-server.

Ben, have you reviewed openbsd-compat/realpath.c yet?
I'd still consider applying my SAFE_REALPATH patch. :-)
Comment 2 Ben Lindstrom 2002-07-18 07:10:26 AEST 

*** This bug has been marked as a duplicate of 220 ***
Comment 3 Damien Miller 2004-04-14 12:24:18 AEST 
Mass change of RESOLVED bugs to CLOSED