SSH key stopped working
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
eucalyptus (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
On UEC on Ubuntu 9.10 the following problem occured during last week's training session:
A student created a key and it worked fine. After some time it stopped working, e.g. the key can no longer be used to log into an instance. The key is named mykey and specific for a certain user - note that multiple users have all a key called 'mykey', maybe this is where Eucalyptus gets confused?
$ ssh -vi ./mykey.priv ubuntu@
OpenSSH_4.7p1 Debian-8ubuntu1.2, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to 172.24.129.139 [172.24.129.139] port 22.
debug1: Connection established.
debug1: identity file ./mykey.priv type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.1p1 Debian-6ubuntu2
debug1: match: OpenSSH_5.1p1 Debian-6ubuntu2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_
debug1: expecting SSH2_MSG_
debug1: SSH2_MSG_
debug1: expecting SSH2_MSG_
debug1: Host '172.24.129.139' is known and matches the RSA host key.
debug1: Found key in /home/student/
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_
debug1: SSH2_MSG_
debug1: Authentications that can continue: publickey
debug1: Next authentication method: publickey
debug1: Trying private key: ./mykey.priv
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: publickey
debug1: No more authentication methods to try.
Permission denied (publickey).
Each student should be able to create and use a key called "mykey" as long as they're unique users with unique keys on a give machine (or separate machines).
What do you mean by "stopped working"?
Did the user have a running instance that they were able to login with that key, and then later, couldn't log in with the same key to the same running instance?
Or, rather, did they create and use instances with that key, and then later, create instances but not be able to use that key?