Red Hat Bugzilla – Bug 142255
Hostbased Auth with /etc/ssh/shosts.equiv
Last modified: 2007-11-30 17:06:54 EST
Enabling HostbasedAuthentication while using the file
/etc/ssh/shosts.equiv does not work:
Server Settings in /etc/ssh/sshd_config
AllowUsers root oracle
All host-keys are known (server and client) and verified.
The client (testhost2) uses the same openssh version and is 2.1ES as
well. While connecting I get the server log as attached.
The file /etc/ssh/shosts.equiv seems not be considered at all.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Configure sshd_config as above
2. Create the file /etc/ssh/shosts.equiv
3. try hostbased authentication
Actual Results: hostbased authentication does not work
Expected Results: hostbased authentication works
openssh delivered with 2.1ES seems to be rather old anyway and lacks
lots of features seen in newer versions (priviledge separation, ..)
Created attachment 108121 [details]
SSH server Log (DEBUG mode)
as mentioned above
RHosts authentication is hard-coded to be disallowed for the root
user. Can you verify that it works if you attempt to log in as an
I disabled RhostsAuthentication by purpose - I want
HostbasedAuthentication to work with protocol version 2 only and do
not see any connection between the two items.
The goal is to avoid the rhosts stuff and use openssh' own
configuration file /etc/shosts.equiv. Unprivileged users will not help
me neither, I need this settings for administration puporses.
Isn't it possible to circumvent the .rhosts files?
Why not use su or sudo on special account created for this.