OK, I know the basics of how to set up passwordless ssh: create a keypair using ssh-keygen then add the public key from id_dsa.pub into the host's .ssh/authorized_keys. So for two different machines client and host, I can ssh from client into host without entering a password. Good so far.
But I have some software which requires that client be able to ssh into itself without a password. Naively I do the same thing: simply copy .ssh/id_dsa.pub into .ssh/authorized_keys, same directory. But it doesn't work. If I type
user@client:~$ ssh client
then it still asks for my password, even though the public key of client is in its own authorized_keys file.
Am I missing something?
Use
ssh-copy-id user@clientand it will copy the correct data to the correct place. If it's the same user as you, though, it can be problematic since it may overwrite something important. Make a copy of your.sshdirectory before trying.EDIT: Strangely enough, I tried to add my
id_rsa.pubto my.ssh/authorized_keysand it worked. Are you sure that your localsshdis configured to accept shared key authentication?If I'm not mistaken the default options (and default locations of the private keys) are governed by the /etc/ssh/ssh_config file.
However, an ssh command option allows you to specify the location of the private key to be used as well.
Another problem that will have a similar symptom is a failure to add localhost to /etc/hosts.allow, the control file for TCP wrappers. You can temporarily rename /etc/hosts.deny to determine if this is the source of your problem.