Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > HOWTO-Related Questions

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 18th August 2010, 00:49
phenetic phenetic is offline
Junior Member
 
Join Date: Aug 2010
Posts: 3
Thanks: 0
Thanked 0 Times in 0 Posts
Default ssh auth problem - Mirror Your Web Site With rsync

http://www.howtoforge.com/mirroring_with_rsync_p2

It all works, except for the final public-key authorization.
ssh -v shows that public key fails, even though it is recognized!!!

Any ideas??

root@host [/home/chlngday]# /usr/bin/rsync -aqzu --exclude 'video/' --exclude 'access-logs/' -e "ssh -v -i /root/rsync/mirror-rsync-key" chlngday@server.spameater.com:/home/chlngday/public_html/ /home/chlngday/public_html/
OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to server.spameater.com [72.44.80.21] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /root/rsync/mirror-rsync-key type 2
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.9p1
debug1: match: OpenSSH_3.9p1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.9p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'server.spameater.com' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:3
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-with-mic,password
debug1: Next authentication method: gssapi-with-mic
debug1: Authentications that can continue: publickey,gssapi-with-mic,password
debug1: Authentications that can continue: publickey,gssapi-with-mic,password
debug1: Next authentication method: publickey
debug1: Offering public key: /root/rsync/mirror-rsync-key
debug1: Authentications that can continue: publickey,gssapi-with-mic,password
debug1: Next authentication method: password
chlngday @ server.spameater.com's password:
Reply With Quote
Sponsored Links
  #2  
Old 18th August 2010, 16:50
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,743 Times in 2,577 Posts
Default

Does it work when you delete the

Code:
command="/home/someuser/rsync/checkrsync",from="mirror.example.com",no-port-forwarding,no-X11-forwarding,no-pty
part from /home/someuser/.ssh/authorized_keys?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 18th August 2010, 21:17
phenetic phenetic is offline
Junior Member
 
Join Date: Aug 2010
Posts: 3
Thanks: 0
Thanked 0 Times in 0 Posts
Question

Hi Falko, thanks for your attention.

I did not use that part of the how-to. My authorized keys file looks like this:

Code:
ssh-dss AAAAB3Nz..........FKGPvNcI= root@host.spameater.com
If I enter the password, it works fine.

could it be the SSH version mismatch? could version emulation be broken?

Funny thing is that it used to work, but then stopped on its own, months ago.

I have WHM/cpanel, so maybe it updated something.

Could it be a secure-certificate cache issue?

confused.
Reply With Quote
  #4  
Old 19th August 2010, 16:42
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,743 Times in 2,577 Posts
Default

Hm, I think I'd set up the mirroring again from scratch. Maybe somthing's wrong with the keys...
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #5  
Old 20th August 2010, 08:10
phenetic phenetic is offline
Junior Member
 
Join Date: Aug 2010
Posts: 3
Thanks: 0
Thanked 0 Times in 0 Posts
Default

I've set it up from scratch 3 times now. The keys match. Any ideas?
Reply With Quote
  #6  
Old 21st August 2010, 16:49
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,743 Times in 2,577 Posts
 
Default

Quote:
Originally Posted by phenetic View Post
I did not use that part of the how-to. My authorized keys file looks like this:

Code:
ssh-dss AAAAB3Nz..........FKGPvNcI= root@host.spameater.com
And you have one key per line, don't you?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
Reply

Bookmarks

Tags
ssh rsync public key

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
web site under server's ip (i.e. http://12.123.123.12) onastvar Installation/Configuration 1 24th June 2010 11:21
external mail server and sending e-mails from a site problem dimas Server Operation 5 20th November 2008 20:59
SSH Problem - Receive signal 15 Terminating joelee Technical 1 28th September 2007 18:47
how i can open a web site hadisaadeh Installation/Configuration 10 20th January 2006 15:46
testing web site by its external ip address rosa hsiao General 9 12th January 2006 21:32


All times are GMT +2. The time now is 15:11.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.