[scponly] Could not open keyfile '/home/testuser/.ssh/authorized_keys': Permission denied

Kaleb Pederson kaleb.pederson at gmail.com
Wed Oct 24 11:13:08 EDT 2012


I'd guess it's the permissions on the home directory. See Section 3.14
in OpenSSH's FAQ:

http://www.openssh.org/faq.html

If that doesn't help, the output from the following would be helpful:

ls -ld / ; ls -ld /home ; ls -ld /home/testuser ; ls -ld
/home/testuser/.ssh ; ls -l /home/testuser/.ssh/authorized_keys

Thanks.

--Kaleb

On Wed, Oct 24, 2012 at 7:59 AM, Oliver Rau
<oliver.rau at systemlogistik.dpd.com> wrote:
> Hi all,
>
> I'm running scponlyc 4.8-4.1 on Debian Squeeze 2.6.32-5-686, installed
> via apt.
>
> Unfortunately I always get these entries in /var/log/auth.log (see below).
>
> Rights are set like:
>
> drwxr-xr-x  9 root   root      4096 24. Okt 11:08 testuser
>
> drwxr-xr-x 4 root     root     4096 24. Okt 11:03 usr
> drwxr-xr-x 2 testuser testuser 4096 24. Okt 11:03 transfer
> drwxr-xr-x 3 root     root     4096 24. Okt 11:03 lib
> drwxr-xr-x 2 root     root     4096 24. Okt 11:03 etc
> drwxr-xr-x 2 root     root     4096 24. Okt 11:03 dev
> drwxr-xr-x 2 root     root     4096 24. Okt 11:03 bin
> drwx------ 2 testuser testuser 4096 24. Okt 11:08 .ssh
>
> -rw------- 1 testuser testuser 604 24. Okt 11:08 authorized_keys
>
> crw-rw-rw- 1 root root 1, 3 24. Okt 11:03 null
>
>
> Any ideas what's going on here? In advance many thanks...
> Oliver
>
>
> /var/log/auth.log:
> ...
> Oct 24 11:13:53 sys-ftp sshd[26124]: Connection from 10.15.1.212 port 47659
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Client protocol version
> 2.0; client software version 1.34
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: no match: 1.34
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Enabling compatibility mode
> for protocol 2.0
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Local version string
> SSH-2.0-OpenSSH_5.5p1 Debian-6+squeeze2
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: PAM: initializing for
> "testuser"
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: PAM: setting PAM_RHOST to
> "sysedv2.systemlogistik.dpd.de"
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: PAM: setting PAM_TTY to "ssh"
> Oct 24 11:13:53 sys-ftp sshd[26124]: Failed none for testuser from
> 10.15.1.212 port 47659 ssh2
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Checking blacklist file
> /usr/share/ssh/blacklist.DSA-1024
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Checking blacklist file
> /etc/ssh/blacklist.DSA-1024
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: temporarily_use_uid:
> 1013/1013 (e=0/0)
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: trying public key file
> /home/testuser/.ssh/authorized_keys
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Could not open keyfile
> '/home/testuser/.ssh/authorized_keys': Permission denied
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: restore_uid: 0/0
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: temporarily_use_uid:
> 1013/1013 (e=0/0)
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: trying public key file
> /home/testuser/.ssh/authorized_keys
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: Could not open keyfile
> '/home/testuser/.ssh/authorized_keys': Permission denied
> Oct 24 11:13:53 sys-ftp sshd[26124]: debug1: restore_uid: 0/0
> Oct 24 11:13:53 sys-ftp sshd[26124]: Failed publickey for testuser from
> 10.15.1.212 port 47659 ssh2
>
>
> --
>
> Freundliche Gruesse
> i.A. Oliver Rau
>
> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> DPD Systemlogistik GmbH & Co. KG
> Systemadministrator / GL
> Ludwig-Erhard-Strasse 12
> 85375 Neufahrn
> Deutschland
> Telefon: +49 (0) 8165 942-172
> Telefax: +49 (0) 8165 942-105
> Mobil: +49 (0) 175 938 059 8
> E-Mail: oliver.rau at systemlogistik.dpd.com
> Internet: http://www.dpd.com
>
>
> Sitz der Gesellschaft: Neufahrn bei Freising
> Registergericht Muenchen HRA 77871
>
> Persoenlich haftende Gesellschafterin:
> DPD Systemlogistik Management GmbH
> Registergericht Bad Hersfeld HRB 799
> Geschaeftsfuehrer: Andreas Wild
>
>
> E-Mails schonen die Umwelt. Umso mehr, wenn sie nicht ausgedruckt werden.
> Bitte drucken Sie diese E-Mail nur, wenn es erforderlich ist.
>
> Think about the environment! Do not print this mail unless necessary.
>
> _______________________________________________
> scponly mailing list
> scponly at lists.ccs.neu.edu
> https://lists.ccs.neu.edu/bin/listinfo/scponly



More information about the scponly mailing list