ssh publickey authenication failing

c0wb0y · 12-05-2016, 11:49 AM

There's your problem, your $HOME is incorrectly set.

nibraz · 12-05-2016, 03:02 PM

Quote:

Originally Posted by c0wb0y

There's your problem, your $HOME is incorrectly set.

Ah.. how can I make this right? thanks for pointing it out c0wb0y

szboardstretcher · 12-05-2016, 03:05 PM

Centos/Rhel land would be:

Code:

usermod -d /home/user user

wpeckham · 12-06-2016, 12:12 PM

Quote:

Originally Posted by c0wb0y

Y
Just a guess, your ssh user's $HOME is probably /c/Users... Can you post this:

Code:

echo $HOME
grep <ssh-user> /etc/passwd

That was a good call. Until you suggested I had not considered that the creation of 'user' might have been messed up and the passwd record and file system in disagreement.

c0wb0y · 12-06-2016, 01:54 PM

Based on his log file, the location of his identity file seems strange which is mostly likely related to his $HOME not properly set.

If nibraz can marked this [SOLVED], that would be great so we don't have to redo the process.

nibraz · 12-07-2016, 08:55 AM

Hi Guys

I will test this from my home laptop when I get home.

I have set the directory to /user/home and when I do echo $HOME its now showing /user/home/

Will test this when i go home, redo the pub key authenication and recreate the authorized key file.

Thanks

Benedegu · 03-08-2018, 06:23 AM

Hi!

I have a problem with a private key.

The private key has not password, but when I would like use this key with scp command, I get a prompt password, why? How can I solve this problem?

Code:

scp -i /path/private_key_file -P portnumber user@remote_server:/path/remote/file /path/local/folder/
Enter passphrase for key /path/private_key_file'':
user@remote_server's password:

I use this private key with WinSCP software In Windows. There is working!
Why is not working in Linux?

sundialsvcs · 03-08-2018, 06:58 AM

Ordinarily, SSH certificates are not encrypted with a passphrase, but if they are you'll have to enter it.

SSH uses a client-side "password agent" daemon, but as far as I know it won't supply a passphrase for you. (That would be defeating the purpose of passphrases, I think.)

Also – when you are using certificates, you probably should remove the "fall back to asking for a password" option that you see being done here. If you're using certificates for authentication and don't possess a valid certificate, IMHO you should be denied access altogether (to that place).

Just to be clear: a passphrase is an encryption key that is applied to the contents of the certificate, rendering it useless to someone who just stole your laptop. It is used only on the client side.

Benedegu · 03-08-2018, 08:03 AM

I resolved my problem.

It was very stupid thing. I generateed the key file with puttygen, it is not openssh, so I had to convert to openssh format. Now its working. Sorry!