SSH pub key auth not working…

cmb · Dec 31, 2009, 7:48 PM

You'll need to edit and save admin to rewrite the authorized keys, what I fixed was removing some old code from 1.2.x that was deleting the keys where it shouldn't have been.

jlepthien · Dec 31, 2009, 8:43 PM

Thanks cmb! That did the trick ;) Happy New Year's Eve, now shutdown your computer ;-)

Cheers from Germany!

jlepthien · Jan 6, 2010, 1:03 PM

Hi cmb. I just updated to the latest snap and I had to edit and save admin again. After that it works. So another bug?

jlepthien · Jan 8, 2010, 12:16 PM

With every snap I need to do this again. Can someone please fix this?

jimp · Jan 8, 2010, 2:52 PM

Every firmware update it switches to a new partition, which will then not have your keys present. It probably needs a boot-time function to sync the keys.

jlepthien · Jan 8, 2010, 4:27 PM

Well I thought that all the config including such an important file would be taken over. This is a serious issue when you do a remote upgrade ;-)

jimp · Jan 8, 2010, 4:53 PM

I had thought the existing ssh keys were backed up and carried over, but that may not be the case. I haven't tried to do key-based auth on my ALIX running 2.0 yet.

jlepthien · Jan 8, 2010, 5:00 PM

On 1.2.3 they were…

jimp · Jan 8, 2010, 5:19 PM

I see what I was thinking of. The ssh host keys are backed up and restored on reboot/upgrade, but it may be missing some logic to handle the user keys.

jlepthien · Jan 19, 2010, 12:22 PM

Problem is still there with todays build :-(
Is this still an open ticket? This thing is huge! Think about remote updates….

Should be easy to fix?!

cmb · Jan 20, 2010, 5:07 AM

Only appears to affect embedded, I've never seen it on full. Ticket opened.
http://redmine.pfsense.org/issues/show/317