-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 01/02/2011 11:43 AM, Matthew Saltzman wrote: > On Sun, 2011-01-02 at 10:09 +0100, François Patte wrote: > Le 02/01/2011 02:14, Matthew Saltzman a crit : >>>> I'm trying to set up amanda using the amaddclient command. That >>>> requires that user amandabackup be able to log into the client machine >>>> using ssh keys. >>>> >>>> I've generated the keys on the server machine, copied the public key to >>>> the client machine in /var/lib/amanda/.ssh/authorized_keys >>>> (/var/lib/amanda is amandabackup's home directory). I believe all file >>>> protections are set correctly--they mirror the ones for a regular user. >>>> But ssh fails to use the keys and prompts for a password. > > Did you give some permission to selinux? > >> No, that turned out to be the problem. (Didn't see the violation in >> setroubleshoot because I was doing things remotely.) I think it's a >> bug: amandabackup is a normal user with home directory /var/lib/amanda/. >> Logging in via ssh should "Just Work (tm)". > > >> chcon -Rt ssh_home_t /var/lib/amanda/.ssh Should fix the problem. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAk0iTr4ACgkQrlYvE4MpobP+4wCfZg098r3tzKUbmORHuWPuqdtS +n4Anii4B0mKqnbK7bC6Rl4y+lklGI58 =WI2T -----END PGP SIGNATURE----- -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
