No ubuntu / mint, tudo o que preciso fazer para o login ssh sem senha é:
ssh-keygen -t rsa # on both pc
ssh-copy-id targetpc
ssh targetpc # does not prompt from password anymore
e isso é tudo ..
Eu faço o mesmo no archlinux (ou no manjaro), ele não está funcionando na terceira etapa, ele ainda pede senha ...
debug1: Reading configuration data /home/blablabla/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Connecting to 192.168.11.3 [192.168.11.3] port 22.
debug1: Connection established.
debug1: identity file /home/blablabla/.ssh/id_rsa type 1
debug1: identity file /home/blablabla/.ssh/id_rsa-cert type -1
debug1: identity file /home/blablabla/.ssh/id_dsa type 2
debug1: identity file /home/blablabla/.ssh/id_dsa-cert type -1
debug1: identity file /home/blablabla/.ssh/id_ecdsa type 3
debug1: identity file /home/blablabla/.ssh/id_ecdsa-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.2
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.1
debug1: match: OpenSSH_6.1 pat OpenSSH*
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client arcfour hmac-md5 [email protected]
debug1: kex: client->server arcfour hmac-md5 [email protected]
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ECDSA 71:d2:05:dd:21:d1:ae:fc:a8:e5:f2:1c:2c:60:31:85
debug1: Host '192.168.11.3' is known and matches the ECDSA host key.
debug1: Found key in /home/blablabla/.ssh/known_hosts:11
debug1: ssh_ecdsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/blablabla/.ssh/id_rsa
debug1: Authentications that can continue: publickey,password
debug1: Offering DSA public key: /home/blablabla/.ssh/id_dsa
debug1: Authentications that can continue: publickey,password
debug1: Offering ECDSA public key: /home/blablabla/.ssh/id_ecdsa
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: password
e ao usar o diretório home antigo (do Ubuntu), o ssh-copy-id mostra algumas informações que eu nunca vi antes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
faltam alguns passos que eu deveria fazer no archlinux?
EDIT: a versão do openssh é diferente em ambas as máquinas, uma é 6.1p1-6, outras é 6.2p1-1
Normalmente, isso significa que seu diretório base ou diretórios .ssh / não possuem permissões corretas. confira os syslogs do terminal remoto em busca de erros no sshd.
por exemplo, uma linha contendo:
sshd[pid]: Authentication refused: bad ownership or modes for directory /home/yourusername
em
/var/log/auth.log
significa que você deve fazer
chmod 700 ~
Tags ssh arch-linux