From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <095acfaa80c4629c57866fbb9940a018@yourdomain.dom> From: steve.simon@snellwilcox.com To: 9fans@cse.psu.edu Subject: Re: [9fans] ssh and pcauth In-Reply-To: <730584430@snellwilcox.com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="upas-atoucsuexhxnocjoaccrebtyet" Date: Fri, 29 Aug 2003 10:29:03 +0100 Topicbox-Message-UUID: 25902c1c-eacc-11e9-9e20-41e7f4b1d025 This is a multi-part message in MIME format. --upas-atoucsuexhxnocjoaccrebtyet Content-Disposition: inline Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit I beleive you must have a factotum running, its started at boot, so I would expect it to prompt you for a key (user & password in this case). If this happened once and you have the wrong key then factotum will rembember them until reboot or its told to forget. rob (pike) posted a neat script, delkey, a while back to simplify the deletion of unwanted/bad keys. I don't know why this didn't make it into the distribution. I run a simgle plan9 machine so I have no secstore. In my $user/lib/profile I have: echo -n 'factotum ' auth/aescbc -d < $home/lib/wallet | read -m > /mnt/factotum/ctl This works similarly though less securely (somone could steal my wallet and spend weeks cracking it). -Steve --upas-atoucsuexhxnocjoaccrebtyet Content-Type: message/rfc822 Content-Disposition: inline Date: Fri, 29 Aug 2003 06:55:49 +0100 To: 9fans@cse.psu.edu bcc: "Steve Simon" From: 9fans@cse.psu.edu Sender: 9fans@cse.psu.edu Reply-To: 9fans@cse.psu.edu Importance: normal Priority: normal Subject: [9fans] ssh and pcauth Message-Id: <730584430@snellwilcox.com> X-MIME-Engine: v0.90 MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Id: <730584430-1@snellwilcox.com> Content-Transfer-Encoding: quoted-printable When I boot from my new pcauth kernel, I cannot use ssh. When I try to ssh from Plan 9 to Linux, the same connection that previously worked now gives "ssh: client authentication failed" In the wiki, there is a reference to copying $home/lib/$user.secret.factotum to /mnt/factotum/ctl. What is this for ? Is it for ssh'ing to the Plan 9 machine, or do I have to do it ? I did it as user bootes and ssh still didn't work, and I did it as another user and got a permission denied. I can ssh just fine if I boot from the old pcdisk kernel. I see no messages in the logs on the receiving side of the ssh. However, if I connect to a non-existent or non-responding machine, the ssh just times out, it doesn't give the error; and sniffing the connection reveals some traffic does go between the computers when I attempt and get the "ssh: client authenticaion failed" error. --Rob --upas-atoucsuexhxnocjoaccrebtyet--