On Tue, 2002-11-05 at 03:00, Jonathan Carter wrote: > I have followed detailed instructions to set up ssh between my two servers > without a password but it is failing. > > It may be because one is running V2.1 of ssh and the other is running v3.1 > of ssh. > > when I try to connect with the -v option I get the following output. > > Any help ( apart from recommending upgrading the v2.1 because it is my > production server and I don't realy want to touch it if I canhelp it) >
I have experienced hard to find errors when there are permission issues on the server side in the .ssh directory of the user. make sure that .ssh is readable only by the user and that the keys can only be written to by the user. here are the perms on one of our machines: .ssh]$ ll -a total 24 drwx------ 2 exhibito exhibito 4096 Jun 22 00:05 . drwx------ 4 exhibito exhibito 4096 Nov 4 11:18 .. -rw-r--r-- 1 exhibito exhibito 627 Jun 22 00:05 authorized_keys -rw------- 1 exhibito exhibito 736 Jun 21 23:57 id_dsa -rw-r--r-- 1 exhibito exhibito 622 Jun 21 23:57 id_dsa.pub -rw-r--r-- 1 exhibito exhibito 230 Jun 22 00:00 known_hosts I have also had to stop the sshd service and run it manually with the -d flag so that it will stay up in the term it is started from. That is where you will see why the server is denieing these sort of connections. to try it, as root do: service sshd stop sshd -d try to log in from the remote box service sshd start This will not disconnect any existing ssh sessions. the sshd -d will only accept one connection and then exit when the seesion os ended so you will need to run it multiple times if you want to check multiple times. this works well for me and ssh is only unavailible for less than a miniute. Now that I think about it aI guss you could start it on another port and do your checking that way too and not have any one experience any interuptions. Your firewall will have to allow those conncections of course. HTH Bret -- redhat-list mailing list unsubscribe mailto:redhat-list-request@;redhat.com?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
