省流:文件或目录权限原因
chmod 600 /home/pi/.ssh/authorized_keys
chmod 700 /home/pi/.ssh
chmod go-w /pi/user
分析
目前需求是电脑使用ssh私钥登录设备而不需要输入密码
在电脑端执行ssh-copy-id pi@192.168.1.11
后提示正常
Now try logging into the machine, with: "ssh 'pi@192.168.1.11'"
and check to make sure that only the key(s) you wanted were added.
但登录依然需要输入密码
$ ssh 'pi@192.168.1.11'
pi@192.168.1.11's password:
在设备端执行service sshd status
可以看到错误信息
Authentication refused: bad ownership or modes for file /home/pi/.ssh/authorized_keys
查看网络资料获知,ssh服务不希望组具有对home
和.ssh
目录写权限,另外authorized_keys
应为600
尝试
- 执行
chmod 600 /home/pi/.ssh/authorized_keys
后依然登录失败,提示:Authentication refused: bad ownership or modes for directory /home/pi/.ssh
- 执行
chmod 700 /home/pi/.ssh
后依然登录失败,提示:Authentication refused: bad ownership or modes for directory /home/pi
- 执行
chmod go-w /pi/user
后登录成功