Hi,
In the last updated my Fedora with the official updates and now it seems
that passphraseless connections to RHEL/CentOS 5.X are not working any more.
When I try to ssh from my Fedora machine to my CentOS machine, it gives
errors:
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS r
try to use strace on the ssh server and see what does it do. Maybe
you'll get an idea why it rejects your client.
Kaplan
2010/1/27 Hetz Ben Hamo :
> Hi,
> In the last updated my Fedora with the official updates and now it seems
> that passphraseless connections to RHEL/CentOS 5.X are not working
On Wed, Jan 27, 2010, Hetz Ben Hamo wrote about "SSH problem":
> debug1: Offering public key: /home/hetz/.ssh/id_rsa
>..
> debug1: Trying private key: /home/hetz/.ssh/id_dsa
> debug1: Next authentication method: password
I don't know if this is your case, but this usual
010, Hetz Ben Hamo wrote about "SSH problem":
> > debug1: Offering public key: /home/hetz/.ssh/id_rsa
> >..
> > debug1: Trying private key: /home/hetz/.ssh/id_dsa
> > debug1: Next authentication method: password
>
> I don't know if this is your case, bu
On Wed, Jan 27, 2010 at 12:38:40PM +0200, Lior Kaplan wrote:
> try to use strace on the ssh server and see what does it do. Maybe
> you'll get an idea why it rejects your client.
A variant of that:
/usr/sbin/sshd -p 2022 -dd
and then trry connecting to port 2022 instead.
--
Tzafrir Cohen
:
On Wed, Jan 27, 2010, Hetz Ben Hamo wrote about "SSH problem":
> debug1: Offering public key: /home/hetz/.ssh/id_rsa
>..
> debug1: Trying private key: /home/hetz/.ssh/id_dsa
> debug1: Next authentication method: password
I don't know if th
2010/1/28 guy keren :
>
> someone suggested that you should disable gssapi - i second that. we had a
> similar problem with centos systems (thought it was more of connections
> taking long - not completely failing), and disabling the use of gssapi _in
> the client_ solved it.
I'll second this as w
On Wed, 27 Jan 2010 20:18:51 Hetz Ben Hamo wrote:
>
> The permission issue is the first thing I checked. Everything is ok there
> The log portion which I posted is what appears in the secure log file.
> Trying to disable Kerberos doesn't help.
>
> On Wed, Jan 27, 2010 at 7:59 PM, Nadav Har'El wrote
On 29 January 2010 03:14, Ehud Karni wrote:
> Disabling Kerberos and GSSAPI should not change anything (may be a
> slight shorter protocol exchange) because they are just MORE options.
My personal experience indicates otherwise - GSSAPI timeout can slow
down logins a lot (by around 30-60 seconds,
Hi,
What is gssapi good for?
Read about it in wikipedia but I am not aware of apps that use it.
Basically I disable it in new servers to get faster response.
Bye,
Miki
--
Michael Ben-Nes - Internet Consultant and Director.
http://www.epoch.co.il -
2010/1/28 Michael Ben-Nes :
> Hi,
> What is gssapi good for?
> Read about it in wikipedia but I am not aware of apps that use it.
> Basically I disable it in new servers to get faster response.
I'm curios too. Couldn't find any use for it and also disable it as
part of our SOE.
Anyone?
--Amos
_
Amos Shapira wrote:
> 2010/1/28 Michael Ben-Nes :
>
>> Hi,
>> What is gssapi good for?
>> Read about it in wikipedia but I am not aware of apps that use it.
>> Basically I disable it in new servers to get faster response.
>>
>
> I'm curios too. Couldn't find any use for it and also disable
12 matches
Mail list logo
