This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: OpenSSH pubkey authentication failing after update to 5.4
On Mar 10 18:04, Thorsten Kampe wrote:
> * Corinna Vinschen (Wed, 10 Mar 2010 17:32:44 +0100)
> > On Mar 10 17:15, Thorsten Kampe wrote:
> > > # 5.3 (old SSH)
> > > temporarily_use_uid: 500/513 (e=1105/513)
> > > trying public key file /home/admin/.ssh/authorized_keys
> > > fd 4 clearing O_NONBLOCK
> > > matching key found: file /home/admin/.ssh/authorized_keys, line 1
> > > Found matching DSA key: 1b:31:25:da:6f:89:17:e8:25:46:46:60:ed:6f:a2:6c
> > >
> > > # 5.4 (new SSH)
> > > temporarily_use_uid: 500/513 (e=1105/513)
> > > trying public key file //.ssh/authorized_keys
> > > restore_uid: 1105/513
> > > temporarily_use_uid: 500/513 (e=1105/513)
> > > trying public key file //.ssh/authorized_keys
> > > restore_uid: 1105/513
> > > Failed publickey for admin from 149.44.136.129 port 2864 ssh2
> > [...]
> Okay, I figured it out, it's a bug. The problem comes from
> "AuthorizedKeysFile .ssh/authorized_keys" in sshd_config (which is
> according to the sshd_config man page the default). It looks like the
> value was interpreted in OpenSSH 5.3 as a relative path (relative to the
> user's home directory) and in 5.4 as an absolute path. Commenting out
> this setting fixes the problem.
Confirmed. As does changing it to
AuthorizedKeysFile %h/.ssh/authorized_keys
If that was a deliberate change, it's not documented.
Corinna
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Project Co-Leader cygwin AT cygwin DOT com
Red Hat
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple