[Novalug] SSH key auth issue (brain fart!)

Nick Danger nick@hackermonkey.com
Wed Nov 27 19:23:25 EST 2013


I cannot get the ssh key auth working for one user, specifically the 
_nagios user. I CAN for my own user. It all looks the same to me so I 
figured I must be missing something somewhere.... Details below.

Server1 - OpenBSD, running nagios. (user "_nagios" SSH's to another 
OpenBSD server for checks, and that works just fine)
Server2 - Linux, CentOS. Has users nickdanger and _nagios.


 From Server1:

$ uname -a
OpenBSD server1.hackermonkey.com 5.2 GENERIC#309 amd64
$ whoami
_nagios
$ ssh nickdanger@server2
Last login: Wed Nov 27 19:14:51 2013 from server1.hackermonkey.com
[nickdanger@server2~]$ logout
Connection to server2 closed.
$ ssh _nagios@server2
_nagios@server2's password:
$

Can't figure out why its asking for a password and not using the key on 
server2. Permissions look fine. File is the same for both users. (and if 
I DID put the password in above, I would connect to server2)

Server2: (information)

[root@server2 home]# ls -la
total 16
drwxr-xr-x.  4 root      root      4096 Nov 27 18:55 .
dr-xr-xr-x. 26 root      root      4096 Nov 27 16:44 ..
drwx------.  3 _nagios       _nagios      4096 Nov 27 17:48 _nagios
drwx------.  3 nickdanger nickdanger 4096 Nov 27 18:22 nickdanger
[root@server2 home]# cd _nagios/
[root@server2 _nagios]# ls -la
total 16
drwx------. 3  _nagios _nagios 4096 Nov 27 17:48 .
drwxr-xr-x. 4 root        root        4096 Nov 27 18:55 ..
-rw-------. 1    _nagios _nagios 34    Nov 27 17:48 .bash_history
drwx------. 2  _nagios _nagios 4096 Nov 27 18:58 .ssh
[root@server2 _nagios]# cd .ssh/
[root@server2 .ssh]# ls -la
total 12
drwx------. 2 _nagios _nagios 4096 Nov 27 18:58 .
drwx------. 3 _nagios _nagios 4096 Nov 27 17:48 ..
-rw-------. 1  _nagios _nagios  860 Nov 27 18:58 authorized_keys
[root@server2 .ssh]# diff ~nickdanger/.ssh/authorized_keys authorized_keys
[root@server2 .ssh]#

This HAS to be something stupid. I can't even blame early Tday rummy 
eggnog as I haven't had any yet!

Nick





More information about the Novalug mailing list