[unisog] SSH postponed public key....

Stephen John Smoogen smooge at unm.edu
Wed Oct 3 18:42:32 GMT 2007

Russell Fulton wrote:
> Hi
> This isn't a big deal but I hate things I can't account for...
> Going through the logs for a couple of Linux boxes (RHE if it matters) I
> find that there are lots of
> sshd[xxx]: 'Postponed publickey for oracle from ::ffff: port 9348 ssh2'
> These two boxes form a cluster and apparently use ssh to constantly check on each other.  I have logged on the the boxes and su'ed to the oracle account and done a manual ssh to the other machine and got the same message in /var/log/secure.
> The two oracle account have a normal set up with authorized keys file, the only slightly odd thing is that someone has generated both dsa and rsa keys on both machines but only the rsa key is in the authorized keys file.
> If these were any 'ordinary' systems I would simply start fiddling but they are part of our oracle cluster upon which everything else depends.  
> I've tried replicating the set up on another system but don't get the odd log messages.
> I have also spent some time googling around this without coming up with a good explanation of what causes the postponed message
> Any ideas?

1) Check perms on the files (if selinux is running check those).
2) Tell .ssh/config to use one kind of key. Its syntax is the same as

Stephen Smoogen -- ITS/Linux Administrator
  MSC02 1520 1 University of New Mexico Albuquerque, NM  87131-0001
  Phone: (505) 277-8129  Email: smooge at unm.edu
 How far that little candle throws his beams! So shines a good deed
 in a naughty world. = Shakespeare. "The Merchant of Venice"

More information about the unisog mailing list