[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Authentication
[Thread Prev] | [Thread Next]
- Subject: Re: Authentication
- From: Bruno Buzzi Brassesco <bruno.brasesco@xxxxxxxxx>
- Reply-to: libssh@xxxxxxxxxx
- Date: Thu, 30 Jul 2020 08:53:21 -0300
- To: libssh@xxxxxxxxxx
Hi, If you define in sshd_config: AuthorizedKeysFile /etc/ssh/authKeys/%u.pub Then it will take the public key of the current user (myCurrentUser.pub). I have two Ubuntu installations (both for development) with Libssh one is working fine with this configuration and the other (much bigger) is more restrictive with permissions it is not working. Still researching on this in the log i see (the public key is accepted but the connection is dropped): Jul 30 12:33:42 db-dbmtest sshd[5366]: Accepted publickey for gsadmin from IP port 51608 ssh2: RSA SHA2 56:f2qRlXQ3cf+ttP3m0XQ3LBexiqEY3EdfgTRGyUr6bik Jul 30 12:33:42 db-dbmtest sshd[5366]: pam_unix(sshd:session): session opened for user gsadmin by (uid=0) Jul 30 12:33:42 db-dbmtest systemd-logind[691]: New session 214619 of user gsadmin. Jul 30 12:33:43 db-dbmtest sshd[5413]: Received disconnect from IP port 51608:11: disconnected by user Jul 30 12:33:43 db-dbmtest sshd[5413]: Disconnected from IP port 51608 Jul 30 12:33:43 db-dbmtest sshd[5366]: pam_unix(sshd:session): session closed for user gsadmin Jul 30 12:33:43 db-dbmtest systemd-logind[691]: Removed session 214619. Jul 30 12:34:01 db-dbmtest CRON[6028]: pam_unix(cron:session): session opened for user gsadmin by (uid=0) Jul 30 12:34:01 db-dbmtest CRON[6027]: pam_unix(cron:session): session opened for user gsadmin by (uid=0) Jul 30 12:34:01 db-dbmtest CRON[6026]: pam_unix(cron:session): session opened for user root by (uid=0) Jul 30 12:34:01 db-dbmtest CRON[6026]: pam_unix(cron:session): session closed for user root Jul 30 12:34:01 db-dbmtest CRON[6027]: pam_unix(cron:session): session closed for user gsadmin Jul 30 12:34:01 db-dbmtest sudo: root : TTY=unknown ; PWD=/usr/lib/check_mk_agent/local ; USER=root ; COMMAND =/usr/bin/wbinfo -t This is suspicious : Jul 30 12:33:43 db-dbmtest sshd[5413]: Received disconnect from IP port 51608:11: disconnected by user It seems that the user disconnects but it is a script running. Still researching this if i find a solution i will post it here. regards, bruno El mar., 28 jul. 2020 a las 14:25, <g4-lisz@xxxxxxxxxxxx> escribió: > On 28.07.20 15:25, Bruno Buzzi Brassesco wrote: > > Maybe has nothing to with this but in our installation /authorizedKeys > > is a folder (not a file). > > I only know this as a single file containing one key per line, at least > for openSSH. But then I wonder why login works with another SSH client... > > Set a high verbosity level on both sides to see the reason why the key > was rejected. > > >
| Re: Authentication | Bruno Buzzi Brassesco <bruno.brasesco@xxxxxxxxx> |
| Authentication | Bruno Buzzi Brassesco <bruno.brasesco@xxxxxxxxx> |
| Re: Authentication | Bruno Buzzi Brassesco <bruno.brasesco@xxxxxxxxx> |
| Re: Authentication | g4-lisz@xxxxxxxxxxxx |