[ale] OpenSSH Client & Commercial SSH2 Server Incompatibility

Jerry Z. Yu z.yu at ptek.com
Wed Feb 20 14:43:46 EST 2002


	I did it back & forth. the common way is have openssh or ssh2
generates key for its use, into ~/.ssh or ~/.ssh2, respectively.
	For public authentication to server of different genre, you'd just
use openssh's ssh-keygen to convert it to the server genre's format. man
page says it all.  For ssh2 server, credentials in ~/.ssh2/authorization;
For openssh server, it is in ~/.ssh/authorized_keys2
	F-secure's ssh-3.* version has 'requiredauthentication' directive
in sshd2_config. it could be possible that you are set it to requires both
puclic key and password. just a thought.
	ssh2 -v ruser at remote.com should give more verbose output for
debugging purpose.

On Wed, 20 Feb 2002, Gabriel Donnell wrote:

#Hello ALE,
#
#I have Red Hat 7.2 systems with the OpenSSH client that fail to authenticate to
#Red Hat 6.2 systems with the commercial SSH2 server.  I used the ssh-keygen2
#application on one of the SSH2 servers to generate the public & private DSA
#keys and copied them to the account on the OpenSSH & SSH2 client systems.
#
#The authentication works with Red Hat 6.2 SSH2 clients connecting to Red Hat
#6.2 SSH2 servers that DO require public & private keys.  It also works with
#Red Hat 7.2 OpenSSH clients connecting to Red Hat 6.2 SSH2 servers that DO NOT
#require public & private keys.
#
#However, it fails with Red Hat 7.2 OpenSSH clients connecting to Red Hat 6.2
#SSH2 servers that DO require public & private keys.  It keeps asking for the
#passphrase even after it is entered correctly.  When a blank passpphrase is
#entered, it asks for the remote account password.  Even though the password is
#entered correctly, it fails authentication due to the public key.
#
#Below is the terminal output from one of the Red Hat 7.2 OpenSSH clients:
#--------------------------------------------------------------------------------
#openssh at redhat-7.2[1/1]$ ssh -2 -i ~/.ssh2/openssh at redhat-7.2.domain.com
#ssh2 at redhat-6.2.domain.com
#Enter passphrase for key '/home/openssh/.ssh2/openssh at redhat-7.2.domain.com':
#Enter passphrase for key '/home/openssh/.ssh2/openssh at redhat-7.2.domain.com':
#Enter passphrase for key '/home/openssh/.ssh2/openssh at redhat-7.2.domain.com':
#ssh2 at redhat-6.2.domain.com's password:
#Authenticated with partial success.
#Permission denied (publickey).
#openssh at redhat-7.2[2/2]$
#--------------------------------------------------------------------------------
#
#Please let me know if there are problems and/or solutions associated with
#connecting OpenSSH clients to SSH2 servers that require public & private keys.
#
#Thanks,
#Gabriel (Gabe) Donnell
#
#__________________________________________________
#Do You Yahoo!?
#Yahoo! Sports - Coverage of the 2002 Olympic Games
#http://sports.yahoo.com
#
#---
#This message has been sent through the ALE general discussion list.
#See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
#sent to listmaster at ale dot org.
#

Jerry Z. Yu					+1-404-262-8544 (O)
Systems Engineer				z.yu at ptek.com
IS Support, Voicecom,				www.voicecom.com
A business unit of PTEK Holdings, Inc.		www.ptek.com


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.






More information about the Ale mailing list