From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.9 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H4, RCVD_IN_MSPIKE_WL,URIBL_SBL_A autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 26290 invoked from network); 25 Jan 2021 15:52:58 -0000 Received: from tb-ob0.topicbox.com (64.147.108.117) by inbox.vuxu.org with ESMTPUTF8; 25 Jan 2021 15:52:58 -0000 Received: from tb-mx1.topicbox.com (tb-mx1.nyi.icgroup.com [10.90.30.61]) by tb-ob0.topicbox.com (Postfix) with ESMTP id D364C350E2 for ; Mon, 25 Jan 2021 10:52:54 -0500 (EST) (envelope-from bounce.mM13aa5c5d2052fc3c2bd0c8ac.r522be890-2105-11eb-b15e-8d699134e1fa@9fans.bounce.topicbox.com) Received: by tb-mx1.topicbox.com (Postfix, from userid 1132) id D0014142D20F; Mon, 25 Jan 2021 10:52:54 -0500 (EST) ARC-Authentication-Results: i=2; topicbox.com; arc=pass; dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:to:subject:date:from:in-reply-to :mime-version:content-type:content-transfer-encoding:list-help :list-id:list-post:list-subscribe:reply-to:list-unsubscribe; s= sysmsg-1; t=1611589974; bh=U5FNLj7pLOAJOP6PxdEM1/iTuYN+/JF8PIPtT oYnECo=; b=PM5MxfoBor0qLQZJ/yGZw35sa8lADRa047onRNRioC+WH8kTpklID vTO5R36NcLXJU7umGwPJ6nj02O6evI4IjlUepZvWjIUOTtxo9QPgvLhc+YsLZIaU e1SDr2r77jZPd6BoSNZyMMl7pE1pP/oFE47tcvR3mUgjSsRwH7J5/M= ARC-Seal: i=2; a=rsa-sha256; cv=pass; d=topicbox.com; s=sysmsg-1; t= 1611589974; b=O33AmnlD5jNjwj8IRZb/hdq63CR9ecA0e0l3G+PK0ygOvGmpQS mDG3UnijCfZU4VH8xsSNEK6hN/S2Lof24CdHTCRpb/K9W+IM0sFvkqTsba3rnugd f3EdLRcfpXVJ6L/0CMyAOjZ9M4IT9drp7hLEfPrlE4wLYQiBDTcMk0080= Authentication-Results: topicbox.com; arc=pass; dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) X-Received-Authentication-Results: tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; iprev=pass smtp.remote-ip=206.124.132.107 (mimir.eigenstate.org); spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-aligned-from=pass (Address match); x-ptr=pass smtp.helo=mimir.eigenstate.org policy.ptr=mimir.eigenstate.org; x-return-mx=pass header.domain=eigenstate.org policy.is_org=yes (MX Records found: kusuri.pikopiko.org,eigenstate.org,nokogiri.pikopiko.org,mail.pikopiko.org); x-return-mx=pass smtp.domain=eigenstate.org policy.is_org=yes (MX Records found: kusuri.pikopiko.org,eigenstate.org,nokogiri.pikopiko.org,mail.pikopiko.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=9fans.net; h=message-id :to:subject:date:from:in-reply-to:mime-version:content-type :content-transfer-encoding:list-help:list-id:list-post :list-subscribe:reply-to:list-unsubscribe; s=dkim-1; bh=OthSl5ok nnjarX2k+R4iEgI/ceI7gkq+6Wy5R3x/edE=; b=GYz33SeFglGi1c/FNGZp6Vea jBpTGC8pMa0cVgbnSW6dTAIzSKSX5jgGxyF1dDQtAcXuhBULLWG3imAPrKevVfYb YyuAFA4NY0rlgQ52B4ISvxu+gWb6kJ66ImkW12i15tjh6BWzOGOno14ugAYbeekS GhRQfmD4S5peUx9muOA= Received: from tb-mx0.topicbox.com (localhost.local [127.0.0.1]) by tb-mx0.topicbox.com (Postfix) with ESMTP id 7AC1613EF322 for <9fans@9fans.net>; Mon, 25 Jan 2021 10:52:45 -0500 (EST) (envelope-from ori@eigenstate.org) Received: from tb-mx0.topicbox.com (localhost [127.0.0.1]) by tb-mx0.topicbox.com (Authentication Milter) with ESMTP id 3122AEE9255; Mon, 25 Jan 2021 10:52:45 -0500 ARC-Seal: i=1; a=rsa-sha256; cv=none; d=topicbox.com; s=arcseal; t= 1611589965; b=F9bTqJgEHYvEokEISjNJMZfqdxg+kfxOnuPnh9kb/JQy2ZCJB0 VvicnIF0QBeFwzsQchaRKhCZjvG6x6znNQym2+Jn8DoojkjckTnf/e1zhmomAG2U h5mc4p5Ct/PhXmvL4xeHasWW9pfg6+adKs24UYdLzdlmCQjTtp0xRS2ziggITAN4 Qw8MC2zgqij8Y63mt1rZGhC8ywfu942OXq4lZm5THTQbp2BGj6nCQXEAZ7lX4LPV QJxGf4zz/on4RBUWu5XTS/Jzv2/+/9xAROBXNr5oO7XC3Mza05qtEVkTramrHp4V NWDBcyqGcGVfnOLIyjz4YW9boqa0BmS3UWdw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:to:subject:date:from:in-reply-to :mime-version:content-type:content-transfer-encoding; s=arcseal; t=1611589965; bh=QRpoVyf3tVuAFYjB76U77fXfVQDZnbMdlpqsxnez9wc=; b= pDHGaiaEcKTYZgBJEec5h6FGtrlcQKwRYsW2Qfe6+HZheHMTuQ1SeswWw5dXZue8 Hl6ImkDd+RY5WwQ+1a3JwGDB95cBtBQ3hdc4U0NmrPu7CO3WRxmAEg5yOkA0eZwJ m2GwuUG/e8yr09Wp4D+m47/HlZ+qHNbMwNOBTrGthDIbHpacXxDqf324TXplutOn zPUusklDjW/zWdBI2lMdd5NNaNI/ItbqoycHvp6pSCw/H4bPe4Sj6hBKPSNUwAAk McxyHvYad6Hs6/3MPA/p07n4Pta2esHDjmXx899RleiJashMKz5curzHJtwnUiBh sCT9AlE/FD5FgOHV1qPQiw== ARC-Authentication-Results: i=1; tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; iprev=pass smtp.remote-ip=206.124.132.107 (mimir.eigenstate.org); spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-aligned-from=pass (Address match); x-ptr=pass smtp.helo=mimir.eigenstate.org policy.ptr=mimir.eigenstate.org; x-return-mx=pass header.domain=eigenstate.org policy.is_org=yes (MX Records found: kusuri.pikopiko.org,eigenstate.org,nokogiri.pikopiko.org,mail.pikopiko.org); x-return-mx=pass smtp.domain=eigenstate.org policy.is_org=yes (MX Records found: kusuri.pikopiko.org,eigenstate.org,nokogiri.pikopiko.org,mail.pikopiko.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgeduledrvdefgdejlecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpggftfghnshhusghstghrihgsvgdpuffr tefokffrpgfnqfghnecuuegrihhlohhuthemuceftddtnecunecujfgurhepkffvufffhf gjgggtgfesthejjedttddtvdenucfhrhhomhepohhrihesvghighgvnhhsthgrthgvrdho rhhgnecuggftrfgrthhtvghrnhepheelleelveefleffgeeikefgkeefvdeuudefvdfhgf ffuedtgfeuteeftefhvdffnecuffhomhgrihhnpehrvghsuhhlthhsrdgtrghtnecukfhp pedvtdeirdduvdegrddufedvrddutdejpdejgedruddtuddrvddrieenucevlhhushhtvg hrufhiiigvpedtnecurfgrrhgrmhepihhnvghtpedvtdeirdduvdegrddufedvrddutdej pdhhvghlohepmhhimhhirhdrvghighgvnhhsthgrthgvrdhorhhgpdhmrghilhhfrhhomh epoehorhhisegvihhgvghnshhtrghtvgdrohhrgheq X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (eigenstate.org: 206.124.132.107 is authorized to use 'ori@eigenstate.org' in 'mfrom' identity (mechanism 'mx' matched)) receiver=tb-mx0.topicbox.com; identity=mailfrom; envelope-from="ori@eigenstate.org"; helo=mimir.eigenstate.org; client-ip=206.124.132.107 Received: from mimir.eigenstate.org (mimir.eigenstate.org [206.124.132.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tb-mx0.topicbox.com (Postfix) with ESMTPS for <9fans@9fans.net>; Mon, 25 Jan 2021 10:52:44 -0500 (EST) (envelope-from ori@eigenstate.org) Received: from abbatoir.fios-router.home (pool-74-101-2-6.nycmny.fios.verizon.net [74.101.2.6]) by mimir.eigenstate.org (OpenSMTPD) with ESMTPSA id ec076f9d (TLSv1.2:ECDHE-RSA-AES256-SHA:256:NO) for <9fans@9fans.net>; Mon, 25 Jan 2021 07:52:43 -0800 (PST) Message-ID: <31A2AD03A3AF323CCFA1FA3FA0616133@eigenstate.org> To: 9fans@9fans.net Subject: Re: [9fans] getting 9front ssh to use RSA key? Date: Mon, 25 Jan 2021 07:52:42 -0800 From: ori@eigenstate.org In-Reply-To: <20210125.005645.575575916048045945.dworkin@weaselfish.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Topicbox-Policy-Reasoning: allow: sender is a member Topicbox-Message-UUID: 6066a432-5f25-11eb-bb4d-e284c57c11cf Archived-At: =?UTF-8?B?PGh0dHBzOi8vOWZhbnMudG9waWNib3guY29tL2dyb3Vwcy85?= =?UTF-8?B?ZmFucy9UZDA3Mjg2M2E5N2M5ZDNlOS1NMTNhYTVjNWQyMDUyZmMzYzJiZDBj?= =?UTF-8?B?OGFjPg==?= List-Help: List-Id: "9fans" <9fans.9fans.net> List-Post: List-Software: Topicbox v0 List-Subscribe: Precedence: list Reply-To: 9fans <9fans@9fans.net> List-Unsubscribe: , Topicbox-Delivery-ID: 2:9fans:437d30aa-c441-11e9-8a57-d036212d11b0:522be890-2105-11eb-b15e-8d699134e1fa:M13aa5c5d2052fc3c2bd0c8ac:1:eMTd3BL8vShDQu5bCDF7mpckbrOzp2-QjiZHGNSR2Ug Quoth Dworkin Muller : > On Sun, 24 Jan 2021 22:33:59 -0800, ori@eigenstate.org wrote: > ori> Quoth Dworkin Muller : > ori> > If I have PasswordAuthentication enabled on a remote host (tested = on > ori> > MacOS and FreeBSD so far), I can log in to them without any proble= m. > ori> > However, if I have passwords disabled, but have an RSA key on the = Plan 9 > ori> > host and the corresponding pub key in authorized_keys on those rem= ote > ori> > hosts, I'm failing to log in with the error message: > ori> >=20 > ori> > ssh: auth: no key matches proto=3Drsa service=3Dssh role=3D= client > ori> >=20 > ori> > Presumably, this means I haven't set something up somewhere. > ori> > Currently, I do not have an auth server - I'm doing everything fro= m a > ori> > terminal, slowly working my way up to a full world. Is there a wa= y to > ori> > make this work in such an environment, without jumping through more > ori> > hoops than getting an auth server going would take? > ori> >=20 > ori> > Thanks. > ori> >=20 > ori> > Dworkin > ori>=20 > ori> there's an example in the rsa(8) manpage. >=20 > That's what I thought I'd been doing, and doing it again just now > gives the same results. ``cat /mnt/factotum/ctl'' gives two lines, > one starting ``key proto=3Dpass server=3Dlethe service=3Dssh ...'' and the > other ``key proto=3Drsa service=3Dssh ...''. I've triple checked that > what's in .authorized_keys on the remote host (lethe) matches the > output of auth/rsa2ssh. I've also verified that the proto=3Drsa line in > factotum matches my lib/ssh/rsa file. Thus my confusion. >=20 > Thanks. >=20 > Dworkin First off, sanity check: are you running ssh in the same namespace as the factotum? Are you using a drawterm factotum, or are you using one started from within your session? you redacted a lot of the factotum value -- does the value in factotum have all of these fields? key proto=3Drsa service=3Dssh size=3D2048 ek=3D10001 n=3D... !dk? != p? !q? !kp? !kq? !c2? finally, can you paste the output of 'ssh -d yoursystem'? ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/Td072863a97c9d3e9-M13aa5= c5d2052fc3c2bd0c8ac Delivery options: https://9fans.topicbox.com/groups/9fans/subscription