From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.9 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H4, RCVD_IN_MSPIKE_WL,URIBL_SBL_A autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 16136 invoked from network); 26 Jan 2021 03:08:55 -0000 Received: from tb-ob0.topicbox.com (64.147.108.117) by inbox.vuxu.org with ESMTPUTF8; 26 Jan 2021 03:08:55 -0000 Received: from tb-mx1.topicbox.com (tb-mx1.nyi.icgroup.com [10.90.30.61]) by tb-ob0.topicbox.com (Postfix) with ESMTP id E305A1F470 for ; Mon, 25 Jan 2021 22:08:54 -0500 (EST) (envelope-from bounce.mMf20b55b72d8ec45320e81836.r522be890-2105-11eb-b15e-8d699134e1fa@9fans.bounce.topicbox.com) Received: by tb-mx1.topicbox.com (Postfix, from userid 1132) id DDD60142C30C; Mon, 25 Jan 2021 22:08:54 -0500 (EST) ARC-Authentication-Results: i=2; topicbox.com; arc=pass; dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:to:subject:date:from:in-reply-to :mime-version:content-type:content-transfer-encoding:list-help :list-id:list-post:list-subscribe:reply-to:list-unsubscribe; s= sysmsg-1; t=1611630534; bh=QKaGTfevR6lIIxbwZYijY++mLsXLBROx7qI1m XdLAf8=; b=XV052S8O9RwbDvcvUCsyRbQbekXUQ9bonLgii18abEqRE3Gej4E6s Ib96x4j8RLvX5DrgIWvSEThO3HeIfS4prR1wy84zF5svv8JVgB49ppflirsn+VYV g/oEvxNMGInBg8q0Exx2NkL2EqqFE0A8oe1DDbs14+7Uwxd88zWAnY= ARC-Seal: i=2; a=rsa-sha256; cv=pass; d=topicbox.com; s=sysmsg-1; t= 1611630534; b=KHCKebWy3b8Cwsog6vDghQT+16/4GOX6P+udLHBb+UAUr9zlC1 LHkFBC5Mi+JD3MT0RkFiUW/ZV1vVVdjDCUB8M59OJ3uyHJ/dW/5JuiHTjFHSK+4h 973gSVwO7DyB/FZwHiND6WuuwN2M3g0WlTp4djCBhBOYdcWV3QaDeXPgE= Authentication-Results: topicbox.com; arc=pass; dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) X-Received-Authentication-Results: tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; iprev=pass smtp.remote-ip=206.124.132.107 (mimir.eigenstate.org); spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-aligned-from=pass (Address match); x-ptr=pass smtp.helo=mimir.eigenstate.org policy.ptr=mimir.eigenstate.org; x-return-mx=pass header.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,eigenstate.org,kusuri.pikopiko.org,mail.pikopiko.org); x-return-mx=pass smtp.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,eigenstate.org,kusuri.pikopiko.org,mail.pikopiko.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=9fans.net; h=message-id :to:subject:date:from:in-reply-to:mime-version:content-type :content-transfer-encoding:list-help:list-id:list-post :list-subscribe:reply-to:list-unsubscribe; s=dkim-1; bh=CuNP6kGr p1dzlGNZQ3xrsQegtbyu8k694uaCId4aOJ0=; b=QGwDE9YKqqvl2Q2ZvNUmHiGS GWm7FunfRAOxZPtOr13M2BE6ddEqSshJjtey+dHyXW2tdPWf6/BwUaaTCfUpCqHG 8nAz9EjBslm1H19NIu/aAOP/RVZC7s2BLEenVRppMogQFCuNWuQMYlFZ25CQqYpy Eexq36kOtAn7Pa+c450= Received: from tb-mx0.topicbox.com (localhost.local [127.0.0.1]) by tb-mx0.topicbox.com (Postfix) with ESMTP id D7EA6140EE87 for <9fans@9fans.net>; Mon, 25 Jan 2021 22:08:46 -0500 (EST) (envelope-from ori@eigenstate.org) Received: from tb-mx0.topicbox.com (localhost [127.0.0.1]) by tb-mx0.topicbox.com (Authentication Milter) with ESMTP id 18227D13BF3; Mon, 25 Jan 2021 22:08:46 -0500 ARC-Seal: i=1; a=rsa-sha256; cv=none; d=topicbox.com; s=arcseal; t= 1611630526; b=Fa16K9Ibp3PhkjdCxvFezv7FHHGHeVCmMCaFp+PTO7OS4fSIUy l51E+Zh3lHQ4Kryex5YHESfy3pupml6n1mCJB5esKB+lkLui+KClu1/HGUS/WAoz VMjPjsP1lY0jEhg75KQ6JRrOwTfnl1HQvyY9RLsLtqRIPIx4OHksN/krPFkzt76t XbRBQ+FnUo4hSoDC9eqmzqQ2bdhDvmP4vQsk4+HZ65/9ObEW1z3/HhipaZ/qOajh 3QTFouSIZeWUo6NthQhjBc89UbrRAOxZ2U+jAPHGIFWF+DjHPWSJIhCGTzoIL8eS iZbkr0TFdZPe4jL9Zy/NgphXeeC48LTVLVxQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:to:subject:date:from:in-reply-to :mime-version:content-type:content-transfer-encoding; s=arcseal; t=1611630526; bh=/IxyRx0Cbl41wW5Ve7h+sw0uTkU/FPc+Pcc24KMJ3N0=; b= tUqY2kUWEQUlHpDsd7zYlPXaHPrr7XKso723GmkWRSFf8rYvviG9eLIJcKSh6MHF O6ZT1TZ6mDfZVxW4aksHkOZGelfOUQnzVpk6HMzS5tcQQDWfvx29Kk0uzudAGzq7 4CZH6kJWrwxKmdElsdJxCJFkwD9lgXF3+qY2HZJIXeMm9l4Xg97UvuyH03DGXd6L Ia9UQ0xnPPZt9MrpvI5qqrT6k/f/PEZesgbv2FkS2awXxbZguNX8x2tVbm4eno0J ybSYysp3DIPRGiC/0y/UnRJF2deBi9JjtPyIyPxVabZRfUvne9SjyS9ATJ+YBMtb W1CWFnQ3MtRGVLFAPqlDEQ== ARC-Authentication-Results: i=1; tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; iprev=pass smtp.remote-ip=206.124.132.107 (mimir.eigenstate.org); spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-aligned-from=pass (Address match); x-ptr=pass smtp.helo=mimir.eigenstate.org policy.ptr=mimir.eigenstate.org; x-return-mx=pass header.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,eigenstate.org,kusuri.pikopiko.org,mail.pikopiko.org); x-return-mx=pass smtp.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,eigenstate.org,kusuri.pikopiko.org,mail.pikopiko.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgeduledrvdeggddtudculddtuddrgeduhedrtddtmd cutefuodetggdotefrodftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpggftfghn shhusghstghrihgsvgdpuffrtefokffrpgfnqfghnecuuegrihhlohhuthemuceftddtne cunecujfgurhepkffvufffhfgjgggtgfesthejjedttddtvdenucfhrhhomhepohhrihes vghighgvnhhsthgrthgvrdhorhhgnecuggftrfgrthhtvghrnhepvdehtdeffeetgeelhf egkeehhfeuhfehvddvieduueehjeetgeevkeeitdevuefhnecukfhppedvtdeirdduvdeg rddufedvrddutdejpdejgedruddtuddrvddrieenucevlhhushhtvghrufhiiigvpedtne curfgrrhgrmhepihhnvghtpedvtdeirdduvdegrddufedvrddutdejpdhhvghlohepmhhi mhhirhdrvghighgvnhhsthgrthgvrdhorhhgpdhmrghilhhfrhhomhepoehorhhisegvih hgvghnshhtrghtvgdrohhrgheq X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (eigenstate.org: 206.124.132.107 is authorized to use 'ori@eigenstate.org' in 'mfrom' identity (mechanism 'mx' matched)) receiver=tb-mx0.topicbox.com; identity=mailfrom; envelope-from="ori@eigenstate.org"; helo=mimir.eigenstate.org; client-ip=206.124.132.107 Received: from mimir.eigenstate.org (mimir.eigenstate.org [206.124.132.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tb-mx0.topicbox.com (Postfix) with ESMTPS for <9fans@9fans.net>; Mon, 25 Jan 2021 22:08:46 -0500 (EST) (envelope-from ori@eigenstate.org) Received: from abbatoir.fios-router.home (pool-74-101-2-6.nycmny.fios.verizon.net [74.101.2.6]) by mimir.eigenstate.org (OpenSMTPD) with ESMTPSA id b48f5b43 (TLSv1.2:ECDHE-RSA-AES256-SHA:256:NO) for <9fans@9fans.net>; Mon, 25 Jan 2021 19:08:45 -0800 (PST) Message-ID: <680018982E4780C52664493EFBC797A6@eigenstate.org> To: 9fans@9fans.net Subject: Re: [9fans] getting 9front ssh to use RSA key? Date: Mon, 25 Jan 2021 19:08:43 -0800 From: ori@eigenstate.org In-Reply-To: <20210125.193425.1816358441470322534.dworkin@weaselfish.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Topicbox-Policy-Reasoning: allow: sender is a member Topicbox-Message-UUID: d0b17f7e-5f83-11eb-8b4e-d3621dcacf37 Archived-At: =?UTF-8?B?PGh0dHBzOi8vOWZhbnMudG9waWNib3guY29tL2dyb3Vwcy85?= =?UTF-8?B?ZmFucy9UZDA3Mjg2M2E5N2M5ZDNlOS1NZjIwYjU1YjcyZDhlYzQ1MzIwZTgx?= =?UTF-8?B?ODM2Pg==?= List-Help: List-Id: "9fans" <9fans.9fans.net> List-Post: List-Software: Topicbox v0 List-Subscribe: Precedence: list Reply-To: 9fans <9fans@9fans.net> List-Unsubscribe: , Topicbox-Delivery-ID: 2:9fans:437d30aa-c441-11e9-8a57-d036212d11b0:522be890-2105-11eb-b15e-8d699134e1fa:Mf20b55b72d8ec45320e81836:1:AFPNy5zbaBitXtiwYbzUr6Q0PTB7jy4weU2kO9oypRw Quoth Dworkin Muller : > On Tue, 26 Jan 2021 12:24:35 +1030, Alex Musolino w= rote: > alex> You're missing the 'role=3Dclient' tuple. >=20 > You are exactly correct. Looks like rsa(8) has a bug in its example > for generating and installing a fresh key for a remote Unix system, in > that it says to use: >=20 > auth/rsagen -t 'service=3Dssh' >key > auth/rsa2ssh key | ssh unix 'cat >>.ssh/authorized_keys' > cat key >/mnt/factotum/ctl > ssh unix >=20 > Inferring from the example generating a tinc host key, it appears that > the first line should instead be: >=20 > auth/rsagen -t 'service=3Dssh role=3Dclient' >key >=20 > Thank you *very* much for catching that. >=20 > Dworkin Now, I'm confused. The example just works for me -- and I use ssh to get into my linux and openbsd machines on a daily basis. I also just spun up a FreeBSD 12.1 vm on vultr to test, and it just worked out of the box for me. (I assume you're on 12.2, but that wasn't an option -- the update is currently running) ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/Td072863a97c9d3e9-Mf20b5= 5b72d8ec45320e81836 Delivery options: https://9fans.topicbox.com/groups/9fans/subscription