Ich verzweifle an der Konfiguration von hostbasierter Authentifizierung für die openssh mit Protokollversion 2. Nach aller Herumprobiererei steht folgendes im Serverlog:
Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: Starting up PAM with username "root"Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: PAM setting rhost to "vwisbd.vkw.tu-dresden.de" Mar 12 12:00:11 vwisb7 sshd[16369]: Failed none for root from 141.30.51.189 port 32859 ssh2 Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: userauth-request for user root service ssh-connection method hostbased Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: attempt 1 failures 1 Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: userauth_hostbased: cuser root chost vwisbd.vkw.tu-dresden.de. pkalg ssh-dss slen 55 Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: temporarily_use_uid: 0/0 (e=0) Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: restore_uid Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: temporarily_use_uid: 0/0 (e=0) Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: restore_uid Mar 12 12:00:11 vwisb7 sshd[16369]: Failed hostbased for root from 141.30.51.189 port 32859 ssh2 Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: userauth-request for user root service ssh-connection method hostbased Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: attempt 2 failures 2 Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: userauth_hostbased: cuser root chost vwisbd.vkw.tu-dresden.de. pkalg ssh-rsa slen 143 Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: temporarily_use_uid: 0/0 (e=0) Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: restore_uid Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: temporarily_use_uid: 0/0 (e=0) Mar 12 12:00:11 vwisb7 sshd[16369]: debug1: restore_uid Mar 12 12:00:11 vwisb7 sshd[16369]: Failed hostbased for root from 141.30.51.189 port 32859 ssh2
'ls -l /etc/ssh' sagt:
-rw-r--r-- 1 root root 88039 Jan 16 22:25 moduli -rw------- 1 root root 75 Mar 12 11:20 shosts.equiv -rw-r--r-- 1 root root 1050 Jan 16 22:25 ssh_config -rw------- 1 root root 672 Jan 31 11:54 ssh_host_dsa_key -rw-r--r-- 1 root root 601 Jan 31 11:54 ssh_host_dsa_key.pub -rw------- 1 root root 526 Feb 28 10:57 ssh_host_key -rw-r--r-- 1 root root 330 Mar 6 2001 ssh_host_key.pub -rw------- 1 root root 887 Jan 31 11:53 ssh_host_rsa_key -rw-r--r-- 1 root root 221 Jan 31 11:53 ssh_host_rsa_key.pub -rw------- 1 root root 1696 Mar 12 11:20 ssh_known_hosts -rw-r--r-- 1 root root 1926 Mar 12 11:30 sshd_config
'cat /etc/ssh/shosts.equiv':
vwisb7.vkw.tu-dresden.de vwisb9.vkw.tu-dresden.de vwisbd.vkw.tu-dresden.de
Und für den Client gilt noch 'host vwisbd.vkw.tu-dresden.de':
vwisbd.vkw.tu-dresden.de has address 141.30.51.189
Die Datei ssh_known_hosts wurde mittels 'ssh-keyscan -t rsa,dsa -f shosts.equiv' erstellt und sieht vernünftig aus.
Ich seh keinen Fehler und trotzdem geht es nicht! Hat jemand eine Idee?
Danke, Torsten