I have a Sun Sparc server running Solaris 5.6 and sshd version 1.2.27
I have two user IDs trying to use ssh to login without a password. One ID
can get in without a password using the .shosts verification, the other
can't. They both try to ssh from the same remote server. I verified this
by renaming the .shosts file and the user could no longer get in without a
password. Debugging information is not very helpful:
debug1: Waiting for server public key.
debug1: Received server public key (768 bits) and host key (1024 bits).
debug1: Host 'REMOTE_SERVER' is known and matches the RSA1 host key.
debug1: Found key in /home/steve/.ssh/known_hosts:2
debug1: Encryption type: 3des
debug1: Sent encrypted session key.
debug1: Installing crc compensation attack detector.
debug1: Received encrypted confirmation.
debug1: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
debug1: Server refused our rhosts authentication or host key.
What do I need to setup to use .shosts verification for an ID? Do I still
need to make the keys? This is confusing.
I read http://www.snailbook.com/faq/trusted-host-howto.auto.html but I'm
I do not remember making any keys for the user ID that works...
Can I test this locally with one ID? How?
Thanks in advance (for your patience!),