[CentOS] freenx

Craig White craigwhite at azapple.com
Tue Jan 24 05:59:49 UTC 2006


On Mon, 2006-01-23 at 23:48 -0600, Les Mikesell wrote:
> On Mon, 2006-01-23 at 23:38, Craig White wrote:
> 
> > > > 15556 16:54:59 stat64("/var/lib/nxserver/home/.ssh/authorized_keys2",
> > > > 0xbfe2f4d0) = -1 ENOENT (No such file or directory)
> > > > 15556 16:54:59 lstat64("/var/lib/nxserver/home/.ssh/authorized_keys2",
> > > > 0xbfe2f3c0) = -1 ENOENT (No such file or directory)
> > > 
> > > Doesn't that file exist?  Or is this really a SELinux access
> > > error?
> > ----
> > yes it exists. No - not an SELinux error. Just the nonsense from a
> > useless strace.
> 
> It's not nonsense.  The system call told the app the file
> doesn't exist.
> 
> > I think I know the issue.
> > 
> > I copied client.id_dsa.key to
> > lin-workstation:/home/craig/.ssh/authorized_keys2 and still can't use
> > Pubkey authentication as user nx - which tells me that the underlying
> > system on the server isn't getting the value of the public key
> > from /var/lib/nxserver/home/.ssh/
> 
> That's not surprising if it is failing to read the files
> there.  Are they owned by user nx?
----
I've already posted the output. The files are there, they are readable
by user nx - I've not mucked with any of the privileges of any of the
files or subdirectories in the path. The permissions of everything seems
fine.

This is a very clean install.

What I have discovered is this...

if I copy the file client.id_dsa.key to the client machine, and rename
it - i.e. cp client.id_dsa.key ~/.ssh/id_dsa

and then on the server...

cp /var/lib/nxserver/home/.ssh/authorized_keys2 /var/lib/nxserver/home/.ssh/authorized_keys
and
chown nx /var/lib/nxserver/home/.ssh/authorized_keys

I can then login in from my client via ssh using pubkey (finally)

$ ssh nx at srv1.azapple.com
HELLO NXSERVER - Version 1.4.0-44 OS (GPL)
NX> 105 exit
exit
Exit
NX> 999 Bye
Connection to srv1.azapple.com closed.

I haven't translated this into a successful login from nxclient but I
think this helps

Craig




More information about the CentOS mailing list