Re: [BackupPC-users] back to ssh class, I guess
2017-03-28 14:33:56
Dear Bob of Donelson Trophy,
On 28.03.2017 19:24, Bob of Donelson Trophy wrote:
> I now have a functional VM running Ubuntu 16.04LTS and BackupPC 4.0
> (from the master) source.
>
> I have "su - backuppc -s /bin/sh" and acquired the "$" prompt.
>
> Generated the keys with "ssh-keygen".
>
> Now when I:
>
> $ ssh-copy-id root at client ipaddress <<< sanitized for security
> /usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed:
> "/var/lib/backuppc/.ssh/id_rsa.pub"
> /usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to
> filter out any that are already installed
> /usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you
> are prompted now it is to install the new keys
> Permission denied (publickey,password).
Your client most probably is not configured to accept a password for the
user root. This is ok for a configured system where you already have
installed the public key, but will not allow you to do so using a password.
You will have to
o change the entry "PermitRootLogin" in /etc/sshd/ to yes
o restart the sshd on the client
o re-issue your ssh-copy-id
o change back the entry "PermitRootLogin" in /etc/sshd/ to
“prohibit-password” or “without-password”
o restart sshd again.
o test your connection.
Or you may have to find another way to transfer id_rsa.pub.
You may want to read the "PermitRootLogin" stanza in
man sshd_config
for further information. There seems to be a way to even limit logins
with a public key to specific commands. This explicitly mentions backup
purposes.
All information above is from a fairly recent Debian system, so your
mileage may vary depending on the OS and release you are using.
With kind regards
Stefan Peter
--
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
(See https://en.wikipedia.org/wiki/Posting_style for details)
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List: https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki: http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
|
|
|