[CLUE-Tech] ssh2 public key authorization

Dave Anselmi anselmi at americanisp.net
Thu Dec 20 11:39:14 MST 2001 

P.S. In the allowed authentications line, public key should come before password.  As
mentioned, running the client with -v may provide useful info.

Dave Anselmi wrote:

> charles at lunarmedia.net wrote:
>
> > I havent looked into using ssh-agent, however the server should
> > authenticate using just the public key passphrase, which I have set as
> > empty. The sshd man page shows that PubkeyAuthentication is default set to
> > 'yes' so I dont think that any further configuration is needed there.
> >
> > I am not sure if ssh-agent will suit my needs. I am really just using ssh
> > as the transport for rsync in my case. I'd like to automate a transfer of
> > files to take place after hours. Thus, the need to find a manner of
> > authentication other than passphrase.
>
> The upside to ssh-agent is that it allows you to encrypt your private key, and
> still use it without a passphrase.  The downside is that you have to enter the
> passphrase when the machine boots.  Take a look at the O'Reilly SSH book (you can
> get it at the library), if you have time.  They have quite a good discussion of
> handling automated tasks with SSH.
>
> > The unusual thing is that when configured for ssh1, the public key
> > authentication works fine. Its only with ssh2 that the problem occurs.
>
> Not so unusual.  ssh1 and ssh2 are separate servers and (IIRC) have separate config
> files.  Make sure that public key is in the 'allowed authentication' list and that
> password is not in the 'required authentication' list (both in the ssh2 server
> config file).
>
> My feeling is that OpenSSH is easier to use than SSH2, but it doesn't have quite as
> many version 2 features.  FWIW.
>
> Dave
>
> _______________________________________________
> CLUE-Tech mailing list
> CLUE-Tech at clue.denver.co.us
> http://clue.denver.co.us/mailman/listinfo/clue-tech


Received: from willow.seitz.com (root at willow.seitz.com [207.106.55.140])
	by clue.denver.co.us (8.9.3/8.9.3) with ESMTP id HAA26975
	for <clue-tech at clue.denver.co.us>; Thu, 20 Dec 2001 07:02:23 -0700
Received: (from ross at localhost)
	by willow.seitz.com (8.9.3/8.9.3/Debian 8.9.3-21) id JAA06641;
	Thu, 20 Dec 2001 09:32:57 -0500
From: Ross Vandegrift <ross at willow.seitz.com>
Date: Thu, 20 Dec 2001 09:32:57 -0500
To: linux-audio-user at music.columbia.edu
Cc: clue-tech at clue.denver.co.us
Message-ID: <20011220093257.A6581 at willow.seitz.com>
References: <20011219181906.E21626 at kinaole.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20011219181906.E21626 at kinaole.org>; from davep at kinaole.org on Wed, Dec 19, 2001 at 06:19:06PM -0700
Subject: [CLUE-Tech] Re: [linux-audio-user] performance issues with audio / ripping
Sender: clue-tech-admin at clue.denver.co.us
Errors-To: clue-tech-admin at clue.denver.co.us
X-BeenThere: clue-tech at clue.denver.co.us
X-Mailman-Version: 2.0beta2
Precedence: bulk
Reply-To: clue-tech at clue.denver.co.us
List-Id: CLUE technical discussions, questions and answers. <clue-tech.clue.denver.co.us>

[snip] 
> Would trying another sound card be worthwhile?
> 
> Interesting note: Even while ripping / encoding, I can play mp3 files
> off the same drive that the ripper is using across a network connection
> via samba on windoze laptop with literally NO dropouts observed.
> 
> Any other suggestions?

Yea, check out Richard Love's kernel preemption patch at:
http://tech9.net/rml/linux
It really helped interactive applications for me while ripping a CD.
Many people have reported that slower machines have benefitted greatly
from this patch in general.

Ross Vandegrift
ross at willow.seitz.com

More information about the clue-tech mailing list