<html><head><meta http-equiv="Content-Type" content="text/html; charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Hi Kenny,<div class=""><br class=""></div><div class="">Is this a modified version of Dropbear? The standard location is /root/.ssh/authorized_keys (or ~/.ssh/authorized_keys for other users), though some distributions change it to /etc/dropbear/authorized_keys</div><div class="">If it isn't printing any message at all I would check that the key in that file is pasted correctly - newlines sometimes cause problems.</div><div class="">The permissions on the parent directory also need to be writable only by the user. By default logging in as root should work.</div><div class=""><br class=""></div><div class="">Cheers,</div><div class="">Matt</div><div class=""><br class=""></div><div class=""><div><blockquote type="cite" class=""><div class="">On Tue 25/6/2019, at 12:05 pm, Kenny Koller <<a href="mailto:kenny@stealthspacecompany.com" class="">kenny@stealthspacecompany.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div id="divtagdefaultwrapper" dir="ltr" style="font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none; font-size: 12pt; font-family: Calibri, Helvetica, sans-serif;" class=""><div style="margin-top: 0px; margin-bottom: 0px;" class="">Hi Matt,</div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div><div style="margin-top: 0px; margin-bottom: 0px;" class="">Thanks. The double login thing has gone away though I can't explain why due to a number changes that occurred.</div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div><div style="margin-top: 0px; margin-bottom: 0px;" class="">Presently I'm trying to login as root without a password. I use `dbclient root@<ip address> -i ~/.ssh/id_rsa`. This is a private key created by dropbear. On the embedded Linux system I have the public key in /etc/dropbear/authorized_keys. But it continues to prompt me for a password. Running with -F -E simply says that PAM authentication was successful. Permissions on the files in /etc/dropbear are 0600.</div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div><div style="margin-top: 0px; margin-bottom: 0px;" class="">Is there a restriction on root?</div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div><div style="margin-top: 0px; margin-bottom: 0px;" class="">Thanks,</div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div><div style="margin-top: 0px; margin-bottom: 0px;" class="">Kenny</div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div><div style="margin-top: 0px; margin-bottom: 0px;" class=""><br class=""></div></div><hr tabindex="-1" style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none; display: inline-block; width: 642.875px;" class=""><span style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none; float: none; display: inline !important;" class=""></span><div id="divRplyFwdMsg" dir="ltr" style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class=""><font face="Calibri, sans-serif" style="font-size: 11pt;" class=""><b class="">From:</b><span class="Apple-converted-space"> </span>Matt Johnston <<a href="mailto:matt@ucc.asn.au" class="">matt@ucc.asn.au</a>><br class=""><b class="">Sent:</b><span class="Apple-converted-space"> </span>Sunday, June 23, 2019 1:31:52 AM<br class=""><b class="">To:</b><span class="Apple-converted-space"> </span>Kenny Koller<br class=""><b class="">Cc:</b><span class="Apple-converted-space"> </span><a href="mailto:dropbear@ucc.asn.au" class="">dropbear@ucc.asn.au</a><br class=""><b class="">Subject:</b><span class="Apple-converted-space"> </span>Re: Configuration Issues</font><div class=""> </div></div><div class="" style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 13px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none; word-wrap: break-word; line-break: after-white-space;">Hi Kenny,<div class=""><br class=""></div><div class="">I don't think I've seen that problem before. Does Dropbear log anything in /var/log/auth.log or similar? </div><div class="">Or if logging isn't set up on the system, if you run dropbear -F -E it will log to the console.</div><div class="">The clock shouldn't make any difference.</div><div class=""><br class=""></div><div class="">Cheers,</div><div class="">Matt<br class=""><div class=""><br class=""><blockquote type="cite" class=""><div class="">On Thu 20/6/2019, at 11:15 am, Kenny Koller <<a href="mailto:kenny@stealthspacecompany.com" class="">kenny@stealthspacecompany.com</a>> wrote:</div><br class="x_Apple-interchange-newline"><div class=""><div id="x_divtagdefaultwrapper" dir="ltr" class="" style="font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; text-decoration: none; font-size: 12pt; font-family: Calibri, Helvetica, sans-serif;"><p class="" style="margin-top: 0px; margin-bottom: 0px;"></p><div class="">Hi,</div><div class=""><br class=""></div><div class="">I'm using Xilinx's 2019.1 Petalinux system which uses Dropbear 2018.76 by default. The target is</div><div class="">a Zynq 7000 running Linux.</div><div class=""><br class=""></div><div class="">The first issue is that with the open-ssh client the first password attempt fails every time. The</div><div class="">second attempt works. This was before I configured any host/login keys. A console login does not</div><div class="">have this issue.</div><div class=""><br class=""></div><div class="">The second issue is that with the host/login keys in place I continue to be prompted twice when</div><div class="">using ssh. With dbclient I am rejected altogether:</div><div class=""><br class=""></div><div class="">radsys@radsys-nuc:~$ dbclient<span class="x_Apple-converted-space"> </span><a href="mailto:root@10.160.33.150" class="">root@10.160.33.150</a><span class="x_Apple-converted-space"> </span>-i ~/.ssh/id_rsa</div><div class=""><a href="mailto:root@10.160.33.150" class="">root@10.160.33.150</a>'s password: </div><div class=""><a href="mailto:root@10.160.33.150" class="">root@10.160.33.150</a>'s password: </div><div class=""><br class=""></div><div class="">dbclient: Connection to<span class="x_Apple-converted-space"> </span><a href="mailto:root@10.160.33.150" class="">root@10.160.33.150</a>:22 exited: Error reading: Connection reset by peer</div><div class=""><br class=""></div><div class="">My client system is Ubuntu 16.04 with the login (private) key stored as follows. It was generated</div><div class="">with dropbearkey:</div><div class=""><br class=""></div><div class="">radsys@radsys-nuc:~$ ls -al .ssh</div><div class="">drwx------ 2 radsys radsys 4096 Jun 19 19:33 .</div><div class="">drwxr-xr-x 35 radsys radsys 4096 Jun 17 19:20 ..</div><div class="">-rw------- 1 radsys radsys 805 Jun 19 19:31 id_rsa</div><div class=""><br class=""></div><div class="">On the server/embedded side I have the public portion of the private key above in authorized_keys</div><div class="">and a host key also generated using dropbearkey.</div><div class=""><br class=""></div><div class="">root@radio:~# ls -al /etc/dropbear</div><div class="">drwxr-xr-x 2 root root 0 Jun 20 02:25 .</div><div class="">drwxr-xr-x 24 root root 0 Jun 20 02:26 ..</div><div class="">-rw------- 1 root root 393 Jun 20 02:25 authorized_keys</div><div class="">-rw------- 1 root root 805 Jun 20 02:25 dropbear_rsa_host_key</div><div class=""><br class=""></div><div class="">Also, my clock is not set correctly on the embedded system. Is this an issue?</div><br class=""><p class="" style="margin-top: 0px; margin-bottom: 0px;"></p><div class="" style="margin-top: 0px; margin-bottom: 0px;">Help would be greatly appreciated.</div><div class="" style="margin-top: 0px; margin-bottom: 0px;"><br class=""></div><div class="" style="margin-top: 0px; margin-bottom: 0px;">Thanks,</div><div class="" style="margin-top: 0px; margin-bottom: 0px;"><br class=""></div><div class="" style="margin-top: 0px; margin-bottom: 0px;">Kenny</div></div></div></blockquote></div></div></div></div></blockquote></div><br class=""></div></body></html>