Hi,
I don't know a lot of the detail of what you are trying to do I'm
afraid, but from the errors I would say that you need to have the agent
running on the source machine.
If you are logged in via ssh to the source machine and you are trying to
forward a connection you need to be running the agent.
>From the error messages it looks like, in the first case, it tries to
use an agent connection because the private key is not present on the
source machine.
In the second case, it does the same, but has found the private key for
oracle@blah in the source users .ssh directory and the equivalent public
key in the target machines directory.
I wold check the .authorized_keys file in each users directory on target
and source machines and make sure the relevant public/private pairs are
there.
Warning: This is probably complete tosh :)
cheers
Graham
Jim Hall wrote:
>
> Update:
>
> Adding an entry into the local /etc/hosts file I was able to get it to
> work with one account, but not another. Here is the debug output:
>
> from the working account:
>
> xxyy% ssh -v aabb-int
> SSH Version 1.2.27 [sparc-sun-solaris2.5.1], protocol version 1.5.
> Standard version. Does not use RSAREF.
> xxyy: Reading configuration data /etc/ssh_config
> xxyy: ssh_connect: getuid 1131 geteuid 0 anon 0
> xxyy: Connecting to aabb-int [209.143.245.233] port 22.
> xxyy: Allocated local port 1022.
> xxyy: Connection established.
> xxyy: Remote protocol version 1.5, remote software version 1.2.17
> xxyy: Waiting for server public key.
> xxyy: Received server public key (768 bits) and host key (1024 bits).
> xxyy: Host 'aabb-int' is known and matches the host key.
> xxyy: Initializing random; seed file /home/jhall/.ssh/random_seed
> xxyy: Encryption type: idea
> xxyy: Sent encrypted session key.
> xxyy: Installing crc compensation attack detector.
> xxyy: Received encrypted confirmation.
> xxyy: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
> xxyy: Server refused our rhosts authentication or host key.
> xxyy: No agent.
> xxyy: Trying RSA authentication with key 'jhall@xxyy'
> xxyy: Received RSA challenge from server.
> xxyy: Sending response to host key RSA challenge.
> xxyy: Remote: RSA authentication accepted.
> xxyy: RSA authentication accepted by server.
> xxyy: Requesting pty.
> xxyy: Requesting shell.
> xxyy: Entering interactive session.
> Last login: Wed Dec 22 12:14:14 1999 from xxyy-int
> Sun Microsystems Inc. SunOS 5.7 Generic October 1998
> aabb.fooie.com%
>
> from the non-working account:
>
> xxyy:/home/oracle>ssh -v aabb-int
> SSH Version 1.2.27 [sparc-sun-solaris2.5.1], protocol version 1.5.
> Standard version. Does not use RSAREF.
> xxyy: Reading configuration data /etc/ssh_config
> xxyy: ssh_connect: getuid 101 geteuid 0 anon 0
> xxyy: Connecting to aabb-int [209.143.245.233] port 22.
> xxyy: Allocated local port 1022.
> xxyy: Connection established.
> xxyy: Remote protocol version 1.5, remote software version 1.2.17
> xxyy: Waiting for server public key.
> xxyy: Received server public key (768 bits) and host key (1024 bits).
> xxyy: Host 'aabb-int' is known and matches the host key.
> xxyy: Initializing random; seed file /home/oracle/.ssh/random_seed
> xxyy: Encryption type: idea
> xxyy: Sent encrypted session key.
> xxyy: Installing crc compensation attack detector.
> xxyy: Received encrypted confirmation.
> xxyy: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
> xxyy: Server refused our rhosts authentication or host key.
> xxyy: No agent.
> xxyy: Trying RSA authentication with key 'oracle@xxyy'
> xxyy: Received RSA challenge from server.
> xxyy: Bad passphrase supplied for key file /home/oracle/.ssh/identity.
> <--- what does this mean?
> Enter passphrase for RSA key 'oracle@xxyy':
> xxyy: Sending response to host key RSA challenge.
> xxyy: Remote: RSA authentication accepted.
> xxyy: RSA authentication accepted by server.
> xxyy: Requesting pty.
> xxyy: Requesting shell.
> xxyy: Entering interactive session.
> Last login: Wed Dec 22 11:42:01 1999 from xxyy-int
> Sun Microsystems Inc. SunOS 5.7 Generic October 1998
> aabb.fooie.com:/home/oracle>
>
> If some
> Jim Hall wrote:
> >
> > Guys
> >
> > I can't get the ssh/scp to work with no passwords either. I have read
> > the faq, and it looks like my fatal flaw is that my reverse DNS is set
> > up incorrectly. Currently, I run behind a NAT, so my public DNS address
> > for my web server is different than the IP address of the actual box. Is
> > there a way to get this to work using local hosts files, or is ssh tied
> > to DNS?
> >
> > JIM
> >
> > Atro Tossavainen wrote:
> > >
> > > Dear Mohan,
> > >
> > > > 4. Enable RSA authentication (per user based) on machine B in the
> > > > config file sshd_config.
> > > > Make "permitemptypasswords yes". Restart SSH Daemon on machine B.
> > >
> > > Permitting empty passwords is not necessary for RSA authentication to
> > > work.
