× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. January 2020

Re: Using the NSUPDATE command

You have to check the server's logs. At least with linux, you have to up the debug level. I usually just change it to DEBUG, but VERBOSE might have enough info. The usual suspects when it does what you are seeing is that the permissions or contents of the authorized_keys file on the server are wrong. I can't speak to what the permissions should be, but the page you gave before talks about a Repair-AuthorizedKeyPermissions function that seems like it will take care of everything. https://docs.microsoft.com/en-us/windows-server/administration/openssh/openssh_keymanagement. As for contents, at least on linux, the two most common problems I've seen are that the public key gets loaded as multiple lines via a cut and paste, or there is extra whitespace at the beginning or end of the line. The public key should be one line, with no whitespace before or after it.



On Tue, 2020-01-14 at 15:14 +0000, Rob Berendt wrote:

I changed the config file to:

Host gdl57

HostName gdl57.dekko-1

User rob

IdentityFile ~/.ssh/rob_gdisys



Apparently the ssh daemon did stop.


Windows:

PS C:\WINDOWS\system32> Get-Service sshd


Status Name DisplayName

------ ---- -----------

Stopped sshd OpenSSH SSH Server



PS C:\WINDOWS\system32> Start-Service sshd

PS C:\WINDOWS\system32> Get-Service sshd


Status Name DisplayName

------ ---- -----------

Running sshd OpenSSH SSH Server


Now I am getting

IBM i:

ssh -v gdl57

OpenSSH_8.0p1, OpenSSL 1.1.1c 28 May 2019

debug1: Reading configuration data /home/ROB/.ssh/config

debug1: /home/ROB/.ssh/config line 1: Applying options for gdl57

debug1: Reading configuration data /QOpenSys/QIBM/ProdData/SC1/OpenSSH/etc/ssh_config

debug1: Connecting to gdl57.dekko-1 [10.10.9.30] port 22.

debug1: Connection established.

debug1: identity file /home/ROB/.ssh/rob_gdisys type 0

debug1: identity file /home/ROB/.ssh/rob_gdisys-cert type -1

debug1: Local version string SSH-2.0-OpenSSH_8.0

debug1: Remote protocol version 2.0, remote software version OpenSSH_for_Windows_7.7

debug1: match: OpenSSH_for_Windows_7.7 pat OpenSSH* compat 0x04000000

debug1: Authenticating to gdl57.dekko-1:22 as 'rob'

debug1: SSH2_MSG_KEXINIT sent

debug1: SSH2_MSG_KEXINIT received

debug1: kex: algorithm: curve25519-sha256

debug1: kex: host key algorithm: ecdsa-sha2-nistp256

debug1: kex: server->client cipher:

<mailto:chacha20-poly1305@xxxxxxxxxxx>

chacha20-poly1305@xxxxxxxxxxx

MAC: <implicit> compression: none

debug1: kex: client->server cipher:

<mailto:chacha20-poly1305@xxxxxxxxxxx>

chacha20-poly1305@xxxxxxxxxxx

MAC: <implicit> compression: none

debug1: expecting SSH2_MSG_KEX_ECDH_REPLY

debug1: Server host key: ecdsa-sha2-nistp256 SHA256:euodvI3161T4admEYhBIaF8Zfv1ZBhur7gt4gNKAXHI

debug1: Host 'gdl57.dekko-1' is known and matches the ECDSA host key.

debug1: Found key in /home/ROB/.ssh/known_hosts:2

debug1: rekey out after 134217728 blocks

debug1: SSH2_MSG_NEWKEYS sent

debug1: expecting SSH2_MSG_NEWKEYS

debug1: SSH2_MSG_NEWKEYS received

debug1: rekey in after 134217728 blocks

debug1: Will attempt key: /home/ROB/.ssh/rob_gdisys RSA SHA256:2qf7C4xsg7iyCSOe447JsaHoRAkS88FCSwcxBAJ6W1Y explicit

debug1: SSH2_MSG_EXT_INFO received

debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2

-nistp384,ecdsa-sha2-nistp521>

debug1: SSH2_MSG_SERVICE_ACCEPT received

debug1: Authentications that can continue: publickey,password,keyboard-interactive

debug1: Next authentication method: publickey

debug1: Offering public key: /home/ROB/.ssh/rob_gdisys RSA SHA256:2qf7C4xsg7iyCSOe447JsaHoRAkS88FCSwcxBAJ6W1Y explicit

debug1: Authentications that can continue: publickey,password,keyboard-interactive

debug1: Next authentication method: keyboard-interactive

debug1: Authentications that can continue: publickey,password,keyboard-interactive

debug1: Next authentication method: password

debug1: read_passphrase: can't open /dev/tty: No such device or address




[https://www.medtronsoftware.com/img/MedtronMinilogo.bmp] Kevin Bucknum
Senior Programmer Analyst
MEDDATA / MEDTRON
120 Innwood Drive
Covington LA 70433
Local: 985-893-2550
Toll Free: 877-893-2550
https://www.medtronsoftware.com



CONFIDENTIALITY NOTICE

This document and any accompanying this email transmission contain confidential information, belonging to the sender that is legally privileged. This information is intended only for the use of the individual or entity named above. The authorized recipient of this information is prohibited from disclosing this information to any other party and is required to destroy the information after its stated need has been fulfilled. If you are not the intended recipient, or the employee of agent responsible to deliver it to the intended recipient, you are hereby notified that any disclosure, copying, distribution or action taken in reliance on the contents of these documents is STRICTLY PROHIBITED. If you have received this email in error, please notify the sender immediately to arrange for return or destruction of these documents.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.