On Tue, Nov 16, 2010 at 9:14 PM, Stephen Harris <lists at spuddy.org> wrote: > On Tue, Nov 16, 2010 at 09:12:17PM -0500, Kwan Lowe wrote: >> When you first attempt to login, sshd is running as root. It needs to >> look at your NFS mounted home directory (which is often set for no >> root squash) to get the public key. But because it is no root squash, > > Depends on the sshd_config; "UsePrivilegeSeparation yes" (which is > normally the default) means that phase is run as the destination user > and not as root. > Yes, exactly :) We had to change this to get it to work... Or set the norootsquash option..