Hi,<br><br>
I finnaly found out what was worng ...<br>In fact I just had to add the identities with ssh-add ... ;)<br><br>I've also switched to DSA, ... thanks for the hint !<br><br><br>cu,<br>kochi<br><br><br><div><span class="gmail_quote">
On 4/29/06, <b class="gmail_sendername">Alain Knaff</b> &lt;<a href="mailto:alain@knaff.lu">alain@knaff.lu</a>&gt; wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
kochi wrote:<br>&gt; Hi,<br>&gt;<br>&gt; I'm trying to ssh passwordless from a local to a remote machine (both<br>&gt; debian).<br>&gt;<br>&gt; On the local machine I've generated a key and copied it to the remote<br>&gt; machine:
<br>&gt;<br>&gt; local#ssh-keygen -t rsa -b 2048<br>&gt; local#scp id_rsa.pub remote.machine:/blabla<br>&gt;<br>&gt; On the remote machine I have added the key to .ssh/authorized_keys:<br>&gt;<br>&gt; remote#cat id_rsa.pub &gt;&gt; .ssh/authorized_keys
<br>&gt;<br>&gt;<br>&gt; Now if I try to ssh the remote machine I'm still asked to enter the<br>&gt; passphrase ...<br>&gt;<br>&gt; local# ssh remote.machine<br>&gt; Enter passphrase for key '/root/.ssh/id_rsa':<br>&gt;<br>
&gt;<br>&gt; Have I missed something ?<br><br>Maybe the permissions. On some distributions (Fedora, don't know about<br>Debian), the umask is set such that by default any files created are<br>group writable. However, if the authorized keys file is group writable,
<br>sshd disregards it for security reasons.<br><br>To fix this, chmod 600 .ssh/authorized_keys<br><br><br>Moreover, it is advisable to use DSA instead of RSA (DSA is a more<br>secure cipher than RSA, and some versions of sshd might actually
<br>disallow RSA for that reason...)<br><br>ssh-keygen -t dsa<br><br>...<br><br>cat id_dsa.pub &gt;&gt;.ssh/authorized_keys2<br><br>chmod 600 .ssh/authorized_keys2<br><br>&gt;<br>&gt;<br>&gt; Thanks in advance,<br>&gt;<br>
&gt; yours,<br>&gt; kochi<br><br>Regards,<br><br>Alain<br><br></blockquote></div><br>