Public Key SSH access not working

Question

I have previously set up Public Key SSH access to a client's account on Webfaction. However, when I tried to do the same for my own account, I have been unable to make it work.

Tried from 2 different computers (one Ubuntu, one Windoze XP + Putty) following the instructions on http://docs.webfaction.com/user-guide/access.html?highlight=ssh#using-ssh-keys , however I always get a password prompt. In the debug log from my putty session, it says "server refused public key".

I've checked permissions both for my ~/.ssh folder (and authorized_keys file) on the Webfaction server and on my own Ubuntu box.

I assume there's something obvious I've overlooked???

Cheers, Rob Hills Waikiki, Western Australia

Answer 1

1	Just to close this one off, one of the Webfaction Staff (thanks David) restarted the SSH daemon on the server hosting my account and that fixed my problem. permanent link answered 10 Jan '11, 09:23 Rob Hills 21●1●5 accept rate: 0%

Answer 2

Beware setfacl -m d:u:username:anything # even setting to --- seems to confound ssh's safety checks.

To get this working again:

cd
getfacl . # and remember/store the settings for later reuse
setfacl -b .
setfacl -b .ssh
setfacl -b .ssh/authorized_keys
chmod 700 .ssh
chmod 600 .ssh/authorized_keys
setfacl -m u:nginx:r-x  # one thing I saw from the getfacl step
setfacl -m u:apache:r-x # another thing. Your needs may vary

There may be a better way to use setfacl to just remove the default: parts, which seem to have been the real issue. Maybe "setfacl -b -d ." would have worked?

Public Key SSH access not working

Follow this question

Related questions