cwRsync server & ssh pubkey authentication

3 posts / 0 new
Last post
itefix
Offline
Last seen: 2 weeks 17 hours ago
Joined: 01.05.2008 - 21:33
cwRsync server & ssh pubkey authentication

I am running into a similar situation posted in one of the other messages. I do not understand when you said use the Service account to initiate a PKA communication. Here is what I am trying to do:
1) I have installed the latest version of cwRsysn server with ssh.
2) I have a Linux server trying to do a rsync of the files located on the cwRsync server.
3) If I just do rsync as:
linux_server> rsync -av rsync://10.45.1.206:/cygdrive/c/downloads/ . , it works great.
4) If I do rsync over ssh:
linux server> rsync -ave ssh root@10.45.1.206:/cygdrive/c/downloads/ .
it prompts me for a passwd. I copied the rsa public keys and put it under the /home/root/.ssh/authorized_keys2--> but does not work. It still prompts me for a password.

5) The event viewer on the Windows box says: " Authetication refused:bad ownership or modes for file /home/root/.ssh/authorized_keys2.

As per your recommendation, what steps do I need to take to initiate PKA communications via the Private Key provided with the install? Do I create "svcwrsync" account on my Linux server and come in via that account? All I am looking for is to automate the rsync over ssh process initiated from the Linux server.

Any help will be highly appreciated.

Thx.

Ketan

itefix
Offline
Last seen: 2 weeks 17 hours ago
Joined: 01.05.2008 - 21:33
Re: cwRsync server & ssh pubkey authentication

Just wanted to give out some more troubleshooting data. During the PKA failures, the Windows event viewer is giving the foll. messages:
Authentication refused: bad ownership or modes for the file:
/home/root/.ssh/authorized_keys2

I have the foll. modes on the directory files:

chmod 0700 /home/root/.ssh
chmod 0600 /home/root/.ssh/*

I then edited the sshd_config and changes:

Strict mode= yes to no

Now it is working!!! I am not sure if I want to leave the strict mode to no.

Thank you.

Ketan

itefix
Offline
Last seen: 2 weeks 17 hours ago
Joined: 01.05.2008 - 21:33
Re: cwRsync server & ssh pubkey authentication

Hi,
Current version of cwRsync Server supports PKA-based authentication for service account svcwRsync only. Try the following:

  • copy svcwrsync private key to your linux system
  • make sure that this file is readable only by you
  • rsync -ave "ssh -i private key" svcwrsync@10.45.1.206:/cygdrive/c/downloads/ .

strictmode no is not recommended.

Rgrds Tev

Release announcements