[CLUE-Tech] ssh2 public key authorization
Dave Anselmi
anselmi at americanisp.net
Thu Dec 20 11:39:14 MST 2001
P.S. In the allowed authentications line, public key should come before password. As
mentioned, running the client with -v may provide useful info.
Dave Anselmi wrote:
> charles at lunarmedia.net wrote:
>
> > I havent looked into using ssh-agent, however the server should
> > authenticate using just the public key passphrase, which I have set as
> > empty. The sshd man page shows that PubkeyAuthentication is default set to
> > 'yes' so I dont think that any further configuration is needed there.
> >
> > I am not sure if ssh-agent will suit my needs. I am really just using ssh
> > as the transport for rsync in my case. I'd like to automate a transfer of
> > files to take place after hours. Thus, the need to find a manner of
> > authentication other than passphrase.
>
> The upside to ssh-agent is that it allows you to encrypt your private key, and
> still use it without a passphrase. The downside is that you have to enter the
> passphrase when the machine boots. Take a look at the O'Reilly SSH book (you can
> get it at the library), if you have time. They have quite a good discussion of
> handling automated tasks with SSH.
>
> > The unusual thing is that when configured for ssh1, the public key
> > authentication works fine. Its only with ssh2 that the problem occurs.
>
> Not so unusual. ssh1 and ssh2 are separate servers and (IIRC) have separate config
> files. Make sure that public key is in the 'allowed authentication' list and that
> password is not in the 'required authentication' list (both in the ssh2 server
> config file).
>
> My feeling is that OpenSSH is easier to use than SSH2, but it doesn't have quite as
> many version 2 features. FWIW.
>
> Dave
>
> _______________________________________________
> CLUE-Tech mailing list
> CLUE-Tech at clue.denver.co.us
> http://clue.denver.co.us/mailman/listinfo/clue-tech
Received: from willow.seitz.com (root at willow.seitz.com [207.106.55.140])
by clue.denver.co.us (8.9.3/8.9.3) with ESMTP id HAA26975
for <clue-tech at clue.denver.co.us>; Thu, 20 Dec 2001 07:02:23 -0700
Received: (from ross at localhost)
by willow.seitz.com (8.9.3/8.9.3/Debian 8.9.3-21) id JAA06641;
Thu, 20 Dec 2001 09:32:57 -0500
From: Ross Vandegrift <ross at willow.seitz.com>
Date: Thu, 20 Dec 2001 09:32:57 -0500
To: linux-audio-user at music.columbia.edu
Cc: clue-tech at clue.denver.co.us
Message-ID: <20011220093257.A6581 at willow.seitz.com>
References: <20011219181906.E21626 at kinaole.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20011219181906.E21626 at kinaole.org>; from davep at kinaole.org on Wed, Dec 19, 2001 at 06:19:06PM -0700
Subject: [CLUE-Tech] Re: [linux-audio-user] performance issues with audio / ripping
Sender: clue-tech-admin at clue.denver.co.us
Errors-To: clue-tech-admin at clue.denver.co.us
X-BeenThere: clue-tech at clue.denver.co.us
X-Mailman-Version: 2.0beta2
Precedence: bulk
Reply-To: clue-tech at clue.denver.co.us
List-Id: CLUE technical discussions, questions and answers. <clue-tech.clue.denver.co.us>
[snip]
> Would trying another sound card be worthwhile?
>
> Interesting note: Even while ripping / encoding, I can play mp3 files
> off the same drive that the ripper is using across a network connection
> via samba on windoze laptop with literally NO dropouts observed.
>
> Any other suggestions?
Yea, check out Richard Love's kernel preemption patch at:
http://tech9.net/rml/linux
It really helped interactive applications for me while ripping a CD.
Many people have reported that slower machines have benefitted greatly
from this patch in general.
Ross Vandegrift
ross at willow.seitz.com
More information about the clue-tech
mailing list