Your private key on the server??? There should be only one copy of your private
key. This copy should exist on the client (ie the machine you're connecting
from). Your public key can exist on each server you connect to.
Noel
[EMAIL PROTECTED] on 2000.06.09 12:28:26
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
cc: (bcc: Noel L Yap)
Subject: Re: CVS access using SSH
Just for the record, since I started this chain, I have resolved my problem. It
turned out that my private key had not been uploaded to the proper server or at
least not uploaded properly. I plan to document how all of this works, at least
with SourceForge, for others that might have this same trouble.
Thanks to all that offered assistance.
>>> Ondrej Popp <[EMAIL PROTECTED]> 06/09/00 02:27AM >>>
This may be a different situation but I thougth it worthwile to mention,
I have been trying to do cvs access with SSH as well, and the only thing
that worked
for me eventualy was port forwarding. I am running a cvs server at my
Linux PC at home, and am trying to access it from my work (HP-UX). So at
work I did not want to do batch login, because I did not want my
passwords lying around in some files. So I tried to set up hostbased
authentification that never worked because I guess I did not have ssh
installed in the super user mode, as was mentioned in the docs. Then I
found out about the portforwarding feauture of ssh and that worked at
last.
have a look at
http://www.acl.lanl.gov/aclcore/users/technotes/ssh_portforwarding.html#cvs
for details.
Basicaly what you is,
ssh -L2401:remotesite.domain.com:2401 remotesite.domain.com
ssh will give you a prompt so you can login to the remote site, but you
only have to do this once.
Once this is done, there is a channel from the remote cvs server port
2401, to your local host port 2401.
Now, in an other shell, on the client side (so not the ssh one, you can
pop the ssh shell down for the rest) you can just do cvs -d
:pserver:user@localhost:/path/to/repository
just as the server was sitting on the client side. Once you terminate
the ssh shell,
the chanel is gone again and the cvs server will not be accessible
anymore.
This weekend I'll try to enhance things with kerberos, but I think as I
am using ssh maybe this is not really necessary anymore. But maybe it
still is because of this .cvspass file,
you just never know :)
Anyway, port forwarding works great for me.
Ondrej
Chris Cameron wrote:
>
> On Thursday, June 08, 2000 4:59 AM, Sheldon Samuels
[SMTP:[EMAIL PROTECTED]] wrote:
> > Well, I now get a different set of errors, although I'm not sure if this is
from SSH or CVS. Here is what I've done.
> >
> > 1) I created a batch file (sshx.bat) and placed the proper SSH command
inside of the batch. The SSH command is as follows:
> >
> > ssh -v projectname.sourceforge.net -l username
> >
> > 2) I then set my CVS_RSH=sshx.bat
> >
> > 3) Now when I run "CVS UPD" I get the following response:
> >
> > SSH Version 1.2.14 [winnt-4.0-x86], protocol version 1.4.
> > Standard version. Does not use RSAREF.
> > Pseudo-terminal will not be allocated because stdin is not a terminal.
> > ssh_connect: getuid 0 geteuid 0 anon 0
> > Connecting to panjasource.sourceforge.net [198.186.203.44] port 22.
> > Connection established.
> > Remote protocol version 1.5, remote software version 1.2.27
> > Waiting for server public key.
> > Received server public key (768 bits) and host key (1024 bits).
> > Host 'panjasource.sourceforge.net' is known and matches the host key.
> > Initializing random; seed file c:\home/.ssh/random_seed
> > Encryption type: idea
> > Sent encrypted session key.
> > Received encrypted confirmation.
> > Trying RSA authentication with key 'smskeys'
> > Received RSA challenge from server.
> > Sending response to host key RSA challenge.
> > Remote: RSA authentication accepted.
> > RSA authentication accepted by server.
> > Requesting shell.
> > Entering interactive session.
> > -bash: Root: command not found
> > -bash: Valid-responses: command not found
> > -bash: valid-requests: command not found
> >
> This may be too late and you may have solved the problem, but aren't the last
three commands part of the pserver protocol?
>
> ***************************************************************
> Chris Cameron Open Telecommunications NZ Ltd
> Senior Solution Architect
> [EMAIL PROTECTED] P.O.Box 10-388
> +64 4 495 8403 (DDI) The Terrace
> fax: +64 4 495 8419 Wellington
> cell: +64 21 650 680 New Zealand
> Life, don't talk to me about life ....(Marvin - HHGTTG)
--
________________________________________________________
| |
| |
| http://www.geocities.com/SiliconValley/Lakes/6150 |
| |
_ | | _
/ ) | | ( \
_( (_ | _ E-mail: [EMAIL PROTECTED] _ | _) )_
(((\ \)|_/ )________________________________________________( \_|(/
/)))
\\\\ \_/ / \ \_/ ////
\ / \ /
\ _/ \_ /
/__/ \__\
This communication is for informational purposes only. It is not intended as
an offer or solicitation for the purchase or sale of any financial instrument
or as an official confirmation of any transaction. All market prices, data
and other information are not warranted as to completeness or accuracy and
are subject to change without notice. Any comments or statements made herein
do not necessarily reflect those of J.P. Morgan & Co. Incorporated, its
subsidiaries and affiliates.
