-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 hi, I can't do ssh as user from inside gnome, it works from VT. To the root account works, too. cer@Telcontar:~> ssh localhost Received disconnect from ::1: 2: Too many authentication failures for cer Fails locally or to my laptop. And as said, works from the console. My guess is that gnome key-agent is caching a non-existing publick key, and offering it to the server, till this one refuses (six attempts is the default maximum): Oct 20 22:22:54 Telcontar sshd[18584]: Connection from ::1 port 56303 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: Client protocol version 2.0; client software version OpenSSH_5.2 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: match: OpenSSH_5.2 pat OpenSSH* Oct 20 22:22:54 Telcontar sshd[18584]: debug1: Enabling compatibility mode for protocol 2.0 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: Local version string SSH-2.0-OpenSSH_5.2 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: PAM: initializing for "cer" Oct 20 22:22:54 Telcontar sshd[18584]: debug1: PAM: setting PAM_RHOST to "localhost" Oct 20 22:22:54 Telcontar sshd[18584]: debug1: PAM: setting PAM_TTY to "ssh" Oct 20 22:22:54 Telcontar sshd[18584]: debug1: temporarily_use_uid: 1000/100 (e=0/0) Oct 20 22:22:54 Telcontar sshd[18584]: debug1: trying public key file /home/cer/.ssh/authorized_keys Oct 20 22:22:54 Telcontar sshd[18584]: debug1: fd 4 clearing O_NONBLOCK Oct 20 22:22:54 Telcontar sshd[18584]: debug1: restore_uid: 0/0 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: temporarily_use_uid: 1000/100 (e=0/0) Oct 20 22:22:54 Telcontar sshd[18584]: debug1: trying public key file /home/cer/.ssh/authorized_keys2 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: restore_uid: 0/0 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: temporarily_use_uid: 1000/100 (e=0/0) Oct 20 22:22:54 Telcontar sshd[18584]: debug1: trying public key file /home/cer/.ssh/authorized_keys Oct 20 22:22:54 Telcontar sshd[18584]: debug1: fd 4 clearing O_NONBLOCK Oct 20 22:22:54 Telcontar sshd[18584]: debug1: restore_uid: 0/0 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: temporarily_use_uid: 1000/100 (e=0/0) Oct 20 22:22:54 Telcontar sshd[18584]: debug1: trying public key file /home/cer/.ssh/authorized_keys2 Oct 20 22:22:54 Telcontar sshd[18584]: debug1: restore_uid: 0/0 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Oct 20 22:22:54 Telcontar sshd[18584]: Failed publickey for cer from ::1 port 56303 ssh2 Thats six attempts -> failure. Ah, by the way, file "/home/cer/.ssh/authorized_keys2" does not exist. Is it possible to force password authentication for a session? Or to disable the agent for a session? [...] I found this: cer@Telcontar:~> set | grep ssh CVS_RSH=ssh SSH_AUTH_SOCK=/tmp/keyring-CZzKCQ/socket.ssh cer@Telcontar:~> Then: cer@Telcontar:~> SSH_AUTH_SOCK="" ssh -a localhost Password: Last login: Wed Oct 20 22:18:23 2010 from localhost Have a lot of fun... So, that works... Is this a bug? This worked till recently, I have two (perhaps three) 11.2 computers with this problem, which I did not have previously. Must have been an update. - -- Cheers, Carlos E. R. (from 11.2 x86_64 "Emerald" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.12 (GNU/Linux) iEYEARECAAYFAkzAKrUACgkQtTMYHG2NR9WIMQCfYTlfV4meq1MO2MJv14LoLswL UFAAnA3FmUYEUmcPGVF4DvfEGXY+BrPm =j4yt -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org