BackupPC-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [BackupPC-users] back to ssh class, I guess

2017-03-28 14:33:56
Subject: Re: [BackupPC-users] back to ssh class, I guess
From: Stefan Peter <s_peter AT swissonline DOT ch>
To: backuppc-users AT lists.sourceforge DOT net
Date: Tue, 28 Mar 2017 20:32:58 +0200 
Dear Bob of Donelson Trophy,

On 28.03.2017 19:24, Bob of Donelson Trophy wrote:
> I now have a functional VM running Ubuntu 16.04LTS and BackupPC 4.0
> (from the master) source.
> 
> I have "su - backuppc -s /bin/sh" and acquired the "$" prompt.
> 
> Generated the keys with "ssh-keygen".
> 
> Now when I:
> 
> $ ssh-copy-id root at client ipaddress    <<< sanitized for security
> /usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed:
> "/var/lib/backuppc/.ssh/id_rsa.pub"
> /usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to
> filter out any that are already installed
> /usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you
> are prompted now it is to install the new keys
> Permission denied (publickey,password).

Your client most probably is not configured to accept a password for the
user root. This is ok for a configured system where you already have
installed the public key, but will not allow you to do so using a password.

You will have to
o change the entry "PermitRootLogin" in /etc/sshd/ to yes
o restart the sshd on the client
o re-issue your ssh-copy-id
o change back the entry "PermitRootLogin" in /etc/sshd/ to
  “prohibit-password” or “without-password”
o restart sshd again.
o test your connection.

Or you may have to find another way to transfer id_rsa.pub.

You may want to read the "PermitRootLogin" stanza in
man sshd_config
for further information. There seems to be a way to even limit logins
with a public key to specific commands. This explicitly mentions backup
purposes.

All information above is from a fairly recent Debian system, so your
mileage may vary depending on the OS and release you are using.

With kind regards

Stefan Peter

-- 
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
(See https://en.wikipedia.org/wiki/Posting_style for details)

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List:    https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki:    http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [BackupPC-users] back to ssh class, I guess, Richard Shaw
Next by Date:  [BackupPC-users] Salty BackupPC, Kent Tenney
Previous by Thread:  Re: [BackupPC-users] back to ssh class, I guess, Richard Shaw
Next by Thread:  [BackupPC-users] Salty BackupPC, Kent Tenney
Indexes:  [Date] [Thread] [Top] [All Lists]