On Mon, 2006-01-23 at 21:06 -0700, Craig White wrote:
> On Mon, 2006-01-23 at 21:42 -0600, Les Mikesell wrote:
> > On Mon, 2006-01-23 at 21:27, Craig White wrote:
> > > > > and by the way...2 things really bother me but since I can't make it
> > > > > work as it is, I'm not changing them...
> > > > >
> > > > > 1 - there is no /etc/nxserver/node.conf #only node.conf.sample
> > > >
> > > > That's normal.
> > > >
> > > > > 2 - the pub key I listed above apparently is the one distributed with
> > > > > the binary and that would seem to be a security issue
> > > >
> > > > It is only used for the initial connection so the real login
> > > > and password are sent over an encrypted channel. You can't
> > > > do anything else with the nx user login - and you could
> > > > generate new keys if you wanted. But, you should be seeing
> > > > sshd[18876]: Accepted publickey for nx ... entries in
> > > > /var/log/secure if the key is working.
> > > ----
> > > clearly I am not getting anything in /var/log/secure (on the server)
> > > that says anything about nx user except when the nx user was created the
> > > first time I installed freenx/nx
> >
> > I think you have a problem with the client or key. If I alter
> > the key I don't see any log entry for the failure.
> ----
> I might be inclined to agree with you but
>
> #
> diff /etc/nxserver/client.id_dsa.key /var/lib/nxserver/home/.ssh/client.id_dsa.key
> [root@srv1 nxserver]#
>
> so either key that I copy from the server, the result is the same.
>
> I have spent the entire day on this - and gotten nowhere. I started at
> my clients system and was so frustrated, I decided to get a fresh start
> on my server and my workstation and got to the same place nowhere fast.
>
> I find it hard to believe that anyone actually has made it work.
----
also to the point - I have long had a pubkey authentication between the
2 machines for 'root' which has always and still works (permits me to as
root@lin-workstation login as root@srv1 without a password).
Craig
