On Sat, Feb 21, 2004 at 03:52:27PM -0500, Christian W. Sung wrote:
:
: If you have the time and patience, let's try this step by step (we run a
: bunch of BSD boxen and do keep them mostly kind-of up-to-date with the
: new releases, so we go through this nuissance every now and then as
: well... (here's the mandatory commercial plug:
: http://www.UNIXsmith.com). So, let's do the following:
:
: As *yourself*, not as root, do:
:
: 1. ssh-keygen -t rsa, and don't use a password to protect the key.
neptune:~> ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/jcm/.ssh/id_rsa):
/home/jcm/.ssh/id_rsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/jcm/.ssh/id_rsa.
Your public key has been saved in /home/jcm/.ssh/id_rsa.pub.
The key fingerprint is:
ee:25:a2:a1:dc:97:91:19:45:4c:e6:69:12:9b:4d:5b jcm@neptune
neptune:~>
: 2. Copy the resulting id_rsa.pub to ~/.ssh/authorized_keys2 on the
: remote machine you're trying to access, and if there's an
: authorized_keys (without the ending 2), copy the key there as well.
neptune:~> scp .ssh/id_rsa.pub jcm@dogma.freebsd-uk.eu.org:keys2
key_verify failed for server_host_key
lost connection
neptune:~> scp -1 .ssh/id_rsa.pub jcm@dogma.freebsd-uk.eu.org:keys2
Password:
Response:
id_rsa.pub 100% 221 0.2KB/s 00:00
neptune:~> ssh -1 jcm@dogma.freebsd-uk.eu.org
Password:
Response:
Last login: Thu Mar 25 01:38:48 2004 from gnapsny2-ppp78.
Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994
The Regents of the University of California. All rights reserved.
FreeBSD 4.9-STABLE (DOGMA) #1: Sat Nov 29 22:39:46 GMT 2003
+---------------------------------------------------------------+
| FreeBSD UKUG Server - Dogma.freebsd-uk.eu.org |
+---------------------------------------------------------------+
| |
| 08/02/02 IMPORTANT ANNOUCEMENT (Migration Notice) |
| ---------------------------------------- |
| Due to the increasing popularity of the UKUG the |
| ukug.uk.FreeBSD.org website has been migrated to a |
| different server. |
| |
| The new name of the web server running on Dogma is |
| users.uk.FreeBSD.org. Please note that users |
| web-pages should now be advertised as: |
| http://users.uk.FreeBSD.org/~username/ |
| |
+---------------------------------------------------------------+
| Acceptable Use Policy can be viewed by typing 'aup' |
+---------------------------------------------------------------+
Mollison's Bureaucracy Hypothesis:
If an idea can survive a bureaucratic review and be
implemented
it wasn't worth doing.
dogma:~>
dogma:~/.ssh> grep neptune *
zsh: no matches found: *
dogma:~/.ssh> cd ..
dogma:~> ls
500.portsupdate dminit.txt lib/
accounts-318.tar dmsg mail/
accounts.bz2 dmsg.out mytest.sh*
anon@ filez.tar openbackup/
bin/ freebackup/ postponed
cfgfiles.tar.bzip2 jy.tar public_html/
data/ keys2 toarch/
dogma:~> mv keys2 .ssh/authorized_keys2
dogma:~> ls .ssh
authorized_keys2
dogma:~>
: 3. Remove all references to dogma.freebsd-uk.eu.org from your
: known-hosts file, and on the remote machine, remove all references to
: 'neptune' or whatever your hostname happens to be. This will ensure
all
: keys are regenerated the first time you attempt to communicate with the
: remote.
neptune:~> cd .ssh
neptune:~/.ssh> ls
id_rsa id_rsa.pub
neptune:~/.ssh>
: 4. This should have taken care of the problem altogether. If not, let
: me now and we'll work together until it goes away and you are once again
: a happy camper....
I am still neither camping nor happy. :-(
neptune:~> ssh jcm@dogma.freebsd-uk.eu.org
The authenticity of host 'dogma.freebsd-uk.eu.org (130.88.200.97)'
can't be
established.
DSA key fingerprint is c4:81:d6:8d:48:0e:39:ba:b3:40:e2:52:62:18:d4:f5.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'dogma.freebsd-uk.eu.org,130.88.200.97' (DSA)
to
the list of known hosts.
key_verify failed for server_host_key
neptune:~>
jm
--
My other computer is your Windows box.