I just had to setup a new machine, and new ssh keys.
I visited
https://admin.fedoraproject.org/accounts/user/edit/xxxx
I chose my new id_rsa.pub to upload.
But I get:
git push --verbose Pushing to ssh://nbecker@pkgs.fedoraproject.org/mercurial Permission denied (publickey). fatal: The remote end hung up unexpectedly
Hints?
Neal Becker wrote:
I just had to setup a new machine, and new ssh keys.
I visited
https://admin.fedoraproject.org/accounts/user/edit/xxxx
I chose my new id_rsa.pub to upload.
But I get:
git push --verbose Pushing to ssh://nbecker@pkgs.fedoraproject.org/mercurial Permission denied (publickey). fatal: The remote end hung up unexpectedly
Hints?
ssh -v nbecker@pkgs.fedoraproject.org ssh -v nbecker@pkgs.fedoraproject.org OpenSSH_5.8p1, OpenSSL 1.0.0e-fips 6 Sep 2011 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to pkgs.fedoraproject.org [209.132.181.4] port 22. debug1: Connection established. debug1: identity file /home/nbecker/.ssh/id_rsa type 1 debug1: identity file /home/nbecker/.ssh/id_rsa-cert type -1 debug1: identity file /home/nbecker/.ssh/id_dsa type 2 debug1: identity file /home/nbecker/.ssh/id_dsa-cert type -1 debug1: Remote protocol version 2.0, remote software version OpenSSH_5.3 debug1: match: OpenSSH_5.3 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.8 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-ctr hmac-md5 none debug1: kex: client->server aes128-ctr hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Server host key: RSA fe:2e:6a:86:f3:41:e7:03:95:ea:9c:7f:75:9c:ce:9d debug1: Host 'pkgs.fedoraproject.org' is known and matches the RSA host key. debug1: Found key in /home/nbecker/.ssh/known_hosts:7 debug1: ssh_rsa_verify: signature correct debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: Roaming not allowed by server debug1: SSH2_MSG_SERVICE_REQUEST sent debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey debug1: Next authentication method: publickey debug1: Offering RSA public key: /home/nbecker/.ssh/id_rsa debug1: Authentications that can continue: publickey debug1: Offering DSA public key: /home/nbecker/.ssh/id_dsa debug1: Authentications that can continue: publickey debug1: No more authentication methods to try. Permission denied (publickey).
On Tue, Nov 15, 2011 at 07:22:53PM -0500, Neal Becker wrote:
I just had to setup a new machine, and new ssh keys.
I visited
https://admin.fedoraproject.org/accounts/user/edit/xxxx
I chose my new id_rsa.pub to upload.
But I get:
git push --verbose Pushing to ssh://nbecker@pkgs.fedoraproject.org/mercurial Permission denied (publickey). fatal: The remote end hung up unexpectedly
Hints?
I had a similar problem that didn't make sense to me but manually adding the new ssh key to my agent (even though it was already there) fixed it for me.
Next time I rebooted/restarted my X session the problem was resolved.
One annoying gotcha I hit after adding the new key to my agent was that many places now failed to auth as it tried each key in my agent and exceeded the MaxAuthTries in sshd
I hope that helps.
Yours Tony
Tony Breeds wrote:
On Tue, Nov 15, 2011 at 07:22:53PM -0500, Neal Becker wrote:
I just had to setup a new machine, and new ssh keys.
I visited
https://admin.fedoraproject.org/accounts/user/edit/xxxx
I chose my new id_rsa.pub to upload.
But I get:
git push --verbose Pushing to ssh://nbecker@pkgs.fedoraproject.org/mercurial Permission denied (publickey). fatal: The remote end hung up unexpectedly
Hints?
I had a similar problem that didn't make sense to me but manually adding the new ssh key to my agent (even though it was already there) fixed it for me.
Next time I rebooted/restarted my X session the problem was resolved.
One annoying gotcha I hit after adding the new key to my agent was that many places now failed to auth as it tried each key in my agent and exceeded the MaxAuthTries in sshd
I hope that helps.
Yours Tony
Yes, I just did 'ssh-add' and now fedpkg push works Thanks
also, you need to start the sshd service ...
systemctl start sshd.service systemctl status sshd.service
Tony Breeds wrote:
One annoying gotcha I hit after adding the new key to my agent was that many places now failed to auth as it tried each key in my agent and exceeded the MaxAuthTries in sshd
The IdentitiesOnly option to ssh is useful for that. From ssh_config(1):
Specifies that ssh(1) should only use the configured authentication identity and certificate files (either the default files, or those explicitly configured in the ssh_config files or passed on the ssh(1) command-line), even if ssh-agent(1) or a PKCS11Provider or SecurityKeyProvider offers more identities. The argument to this keyword must be yes or no (the default). This option is intended for situations where ssh-agent offers many different identities.
devel@lists.stg.fedoraproject.org