我正在尝试设置与 dreamhost 和我的本地计算机配对的 SSH 密钥。我使用 git bash 作为我的终端(使用 mingw32)
我可以通过 ssh[电子邮件受保护] /cdn-cgi/l/email-protection并要求我提供密码。我已经在本地和共享 dreamhost 服务器上创建了 RSA 密钥。以下是我在 git 终端上执行的步骤:
$ scp ~/.ssh/id_rsa.pub [email protected] /cdn-cgi/l/email-protection:~/
$ ssh [email protected] /cdn-cgi/l/email-protection
[email protected] /cdn-cgi/l/email-protection's password: *****
$ (ls shows my local's id_rsa.pub in the ~ directory)
$ cd ~/.ssh
$ ls
id_rsa id_rsa.pub key_backup
$ cat ./id_rsa.pub >> authorized_keys (i know I could have just copied)
$ ls
authorized_keys id_rsa id_rsa.pub key_backup
vi authorized_keys shows my local's pubkey
$ chmod go-w ~
$ chmod 700 ~/.ssh
$ chmod 600 ~/.ssh/authorized_keys
然后我退出 ssh 连接并输入 ssh[电子邮件受保护] /cdn-cgi/l/email-protection进入我的本地 shell
并要求我输入密码......我在这里做错了什么?
我需要设置 ssh-agent 吗?当我这样做时,并尝试 ssh-add 我得到“无法打开与您的身份验证代理的连接”
谢谢你的帮助!
编辑:这是 ssh -v 的转储
$ ssh -v [email protected] /cdn-cgi/l/email-protection
OpenSSH_4.6p1, OpenSSL 0.9.8e 23 Feb 2007
debug1: Connecting to mysharedserver.com [xxx.xxx.xxx.xx] port 22.
debug1: Connection established.
debug1: identity file /c/Users/User/.ssh/identity type -1
debug1: identity file /c/Users/User/.ssh/id_rsa type 1
debug1: identity file /c/Users/User/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.1p1 Debia
n-5
debug1: match: OpenSSH_5.1p1 Debian-5 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.6
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'mysharedserver.com' is known and matches the RSA host key.
debug1: Found key in /c/Users/User/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Trying private key: /c/Users/User/.ssh/identity
debug1: Offering public key: /c/Users/User/.ssh/id_rsa
debug1: Authentications that can continue: publickey,password
debug1: Trying private key: /c/Users/User/.ssh/id_dsa
debug1: Next authentication method: password
[email protected] /cdn-cgi/l/email-protection's password:
我最近也有类似的问题。检查服务器上的权限:
- ~/(整个主目录)对于组和其他人来说为 755 或更低 - 这对我来说是问题的原因我有 765
- 〜/ .ssh 700
- 〜/.ssh/authorized_keys 600
Update:
encryptfs 也可能存在问题,详细信息如下:https://serverfault.com/questions/310827/ssh-prompts-for-password-even-though-private-keys-are-available-presented-to-se/310829#310829 https://serverfault.com/questions/310827/ssh-prompts-for-password-even-though-private-keys-are-available-presented-to-se/310829#310829
本文内容由网友自发贡献,版权归原作者所有,本站不承担相应法律责任。如您发现有涉嫌抄袭侵权的内容,请联系:hwhale#tublm.com(使用前将#替换为@)