OT: My ssh authorized_keys doesn't work with nfs/nis
Matthew Seaman
matthew at FreeBSD.org
Sat Sep 14 10:50:44 UTC 2019
On 14/09/2019 08:39, Aryeh Friedman wrote:
> My ~/.ssh/authorized_keys files works fine on a machine that is not in my
> NIS domain but when I copy my id_rsa.pub (which is what I did to create the
> non-NIS authorized_keys) to my NIS account and give it the same permissions
> as the working machine it insists on asking for a password.
>
> ssh faraway (non-NIS machine)
> does not ask for a password
> but
> ssh nearby (NIS machine) does
>
> Both have identical authorized keys and both (and their parent dirs) are
> set to 644. Both machines are FreeBSD 11 and the machine doing the ssh
> call is FreeBSD 12
>
Check the ownership / permissions on ~/.ssh on the machine where key
based auth is not working -- sshd will refuse to use authorized_keys if
it thinks permissions are too loose.
Also check for authorized_keys related settings in /etc/ssh/sshd_config
-- it is not uncommon to require authorized_keys to be installed in some
centralized, root owned directory that individual users don't have write
access to.
Cheers,
Matthew
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20190914/cb3f55f4/attachment-0001.sig>
More information about the freebsd-questions
mailing list