ubuntuusers.de

Hallo,

ich bekomme seit einer Woche die ssh-Anmeldung via rsa-keys nicht mehr hin. Es kann nicht an globalen Einstellungen liegen, da es zwischen denselben zwei Rechnern mit einem anderen Benutzernamen funktioniert (dem von meiner Freundin), aber mit meinem Account will es nicht.

Ich habe auf beiden Rechnern die authorized_keys und known_hosts gelöscht, und die id_rsa* auch gelöscht. Und komplett von vorne angefangen, die keys erzeugt etc. Es will einfach nicht. Vllt. hat jemand eine Idee, woran es hängt?

mpw@Ninas-Laptop:~$ ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/mpw/.ssh/id_rsa): 
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in /home/mpw/.ssh/id_rsa.
Your public key has been saved in /home/mpw/.ssh/id_rsa.pub.
The key fingerprint is:
[entfernt]
mpw@Ninas-Laptop
The key's randomart image is:
[entfernt]
mpw@Ninas-Laptop:~$ ssh-copy-id -i .ssh/id_rsa.pub server0
mpw@server0's password: 
Now try logging into the machine, with "ssh 'server0'", and check in:

  ~/.ssh/authorized_keys

to make sure we haven't added extra keys that you weren't expecting.

mpw@Ninas-Laptop:~$ ssh -vvv server0
OpenSSH_5.9p1 Debian-5ubuntu1.1, OpenSSL 1.0.1 14 Mar 2012
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to server0 [192.168.178.21] port 22.
debug1: Connection established.
debug3: Incorrect RSA1 identifier
debug3: Could not load "/home/mpw/.ssh/id_rsa" as a RSA1 public key
debug1: identity file /home/mpw/.ssh/id_rsa type 1
debug1: Checking blacklist file /usr/share/ssh/blacklist.RSA-2048
debug1: Checking blacklist file /etc/ssh/blacklist.RSA-2048
debug1: identity file /home/mpw/.ssh/id_rsa-cert type -1
debug1: identity file /home/mpw/.ssh/id_dsa type -1
debug1: identity file /home/mpw/.ssh/id_dsa-cert type -1
debug1: identity file /home/mpw/.ssh/id_ecdsa type -1
debug1: identity file /home/mpw/.ssh/id_ecdsa-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.9p1 Debian-5ubuntu1.1
debug1: match: OpenSSH_5.9p1 Debian-5ubuntu1.1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.9p1 Debian-5ubuntu1.1
debug2: fd 3 setting O_NONBLOCK
debug3: load_hostkeys: loading entries for host "server0" from file "/home/mpw/.ssh/known_hosts"
debug3: load_hostkeys: found key type ECDSA in file /home/mpw/.ssh/known_hosts:1
debug3: load_hostkeys: loaded 1 keys
debug3: order_hostkeyalgs: prefer hostkeyalgs: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ssh-rsa-cert-v00@openssh.com,ssh-dss-cert-v00@openssh.com,ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: mac_setup: found hmac-md5
debug1: kex: server->client aes128-ctr hmac-md5 none
debug2: mac_setup: found hmac-md5
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ECDSA [entfernt]
debug3: load_hostkeys: loading entries for host "server0" from file "/home/mpw/.ssh/known_hosts"
debug3: load_hostkeys: found key type ECDSA in file /home/mpw/.ssh/known_hosts:1
debug3: load_hostkeys: loaded 1 keys
debug3: load_hostkeys: loading entries for host "192.168.178.21" from file "/home/mpw/.ssh/known_hosts"
debug3: load_hostkeys: found key type ECDSA in file /home/mpw/.ssh/known_hosts:2
debug3: load_hostkeys: loaded 1 keys
debug1: Host 'server0' is known and matches the ECDSA host key.
debug1: Found key in /home/mpw/.ssh/known_hosts:1
debug1: ssh_ecdsa_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: mpw@Server0 (0x7f7f2303a530)
debug2: key: /home/mpw/.ssh/id_rsa (0x7f7f23039fb0)
debug2: key: /home/mpw/.ssh/id_dsa ((nil))
debug2: key: /home/mpw/.ssh/id_ecdsa ((nil))
debug1: Authentications that can continue: publickey,password
debug3: start over, passed a different list publickey,password
debug3: preferred gssapi-keyex,gssapi-with-mic,publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Offering RSA public key: mpw@Server0
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
debug1: Offering RSA public key: /home/mpw/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
debug1: Trying private key: /home/mpw/.ssh/id_dsa
debug3: no such identity: /home/mpw/.ssh/id_dsa
debug1: Trying private key: /home/mpw/.ssh/id_ecdsa
debug3: no such identity: /home/mpw/.ssh/id_ecdsa
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred: ,password
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
mpw@server0's password: 

mpw@Ninas-Laptop:~$ 

Der Public-Key wurde definitiv in die Datei authorized_keys kopiert und ist dort auch derzeit der einzige.

Mit dem Benutzernamen meiner Freundin läuft es ohne Probleme:

nina@Ninas-Laptop:~$ ssh server0
Welcome to Ubuntu 12.04.3 LTS (GNU/Linux 3.12.0-031200rc6-generic x86_64)

 * Documentation:  https://help.ubuntu.com/

33 packages can be updated.
0 updates are security updates.

Last login: Sun Oct 27 16:56:47 2013 from ninas-laptop.local
nina@Server0:~$ 

Grüße MPW

Schuss ins Blaue: Schau mal nach den Dateiberechtigungen für deinen Private-Key auf dem Client, und der authorized_keys-Datei auf dem Server. Beide müssen dir gehören und brauchen 0600 als Rechte. OpenSSH ist da oft etwas pingeling mit diesen Rechten.

Coole Idee, steht aber alles auf 600, nur die id_rsa.pub hat 644, aber die wird ja hier auch nicht verwendet.

Deine Keys passen nicht zusammen...

...
Your identification has been saved in /home/mpw/.ssh/id_rsa.
Your public key has been saved in /home/mpw/.ssh/id_rsa.pub.
...
...
...
debug1: Authentications that can continue: publickey,password
debug1: Trying private key: /home/mpw/.ssh/id_dsa
debug3: no such identity: /home/mpw/.ssh/id_dsa
...
..
.

Schau mal ob der Key überhaupt funktioniert, wenn du ihn explizit angibst:

ssh -vvv -i /home/mpw/.ssh/id_rsa server0

duesentriebchen schrieb:

Deine Keys passen nicht zusammen...

seeh ich nicht, kurz vorher versucht er ja den id_rsa:

debug1: Offering RSA public key: /home/mpw/.ssh/id_rsa
debug3: send_pubkey_test

Viele Grüße u1000

Hallo,

eines vorweg, auch das klappt nicht. Gerade nochmal von meinem eigenen Laptop probiert, der dasselbe Problem hat.

Dabei ist mir in der Ausgabe aufgefallen, dass er auf meinem Rechner, wo ich mich anmelden möchte, irgendwie an falscher Stelle guckt. Vermutlich funkt da Sparkleshare dazwischen oder? Das ist seltsam, weil ich an der Konfiguration länger nichts geändert habe.

mpw@MPWs-Netbook:~$ ssh-copy-id -i .ssh/id_rsa.pub [dyndns entfernt]
mpw@[dyndns entfernt]'s password: 
Now try logging into the machine, with "ssh '[dyndns entfernt]'", and check in:

  ~/.ssh/authorized_keys

to make sure we haven't added extra keys that you weren't expecting.

mpw@MPWs-Netbook:~$ ssh -vvv -i .ssh/id_rsa [dyndns entfernt]
OpenSSH_5.9p1 Debian-5ubuntu1.1, OpenSSL 1.0.1 14 Mar 2012
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to [dyndns entfernt] [ip entfernt] port 22.
debug1: Connection established.
debug3: Incorrect RSA1 identifier
debug3: Could not load ".ssh/id_rsa" as a RSA1 public key
debug1: identity file .ssh/id_rsa type 1
debug1: Checking blacklist file /usr/share/ssh/blacklist.RSA-2048
debug1: Checking blacklist file /etc/ssh/blacklist.RSA-2048
debug1: identity file .ssh/id_rsa-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.9p1 Debian-5ubuntu1.1
debug1: match: OpenSSH_5.9p1 Debian-5ubuntu1.1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.9p1 Debian-5ubuntu1.1
debug2: fd 3 setting O_NONBLOCK
debug3: load_hostkeys: loading entries for host "[dyndns entfernt]" from file "/home/mpw/.ssh/known_hosts"
debug3: load_hostkeys: found key type ECDSA in file /home/mpw/.ssh/known_hosts:403
debug3: load_hostkeys: loaded 1 keys
debug3: order_hostkeyalgs: prefer hostkeyalgs: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ssh-rsa-cert-v00@openssh.com,ssh-dss-cert-v00@openssh.com,ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: mac_setup: found hmac-md5
debug1: kex: server->client aes128-ctr hmac-md5 none
debug2: mac_setup: found hmac-md5
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ECDSA 8f:f8:64:c1:fe:23:90:36:1c:c4:58:7f:23:97:13:f5
debug3: load_hostkeys: loading entries for host "[dyndns entfernt]" from file "/home/mpw/.ssh/known_hosts"
debug3: load_hostkeys: found key type ECDSA in file /home/mpw/.ssh/known_hosts:403
debug3: load_hostkeys: loaded 1 keys
debug3: load_hostkeys: loading entries for host "79.192.206.14" from file "/home/mpw/.ssh/known_hosts"
debug3: load_hostkeys: found key type ECDSA in file /home/mpw/.ssh/known_hosts:421
debug3: load_hostkeys: loaded 1 keys
debug1: Host '[dyndns entfernt]' is known and matches the ECDSA host key.
debug1: Found key in /home/mpw/.ssh/known_hosts:403
debug1: ssh_ecdsa_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: .ssh/id_rsa (0xb791f798)
debug2: key: /home/mpw/.config/sparkleshare/2013-06-11_12h01.key (0xb791f998)
debug1: Authentications that can continue: publickey,password
debug3: start over, passed a different list publickey,password
debug3: preferred gssapi-keyex,gssapi-with-mic,publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Offering RSA public key: .ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
debug1: Offering RSA public key: /home/mpw/.config/sparkleshare/2013-06-11_12h01.key
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred: ,password
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
mpw@[dyndns entfernt]'s password: 

An welcher Stelle kann ich dem sshd (Also Server) sagen, dass er bitte in ~/.ssh/ gucken soll und nicht in ~/.config/sparkleshare/?

An welcher Stelle kann ich dem sshd (Also Server) sagen, dass er bitte in ~/.ssh/ gucken soll und nicht in ~/.config/sparkleshare/?

Poste mal bitte von deinem Client die ~.ssh/config

Von deinem Server die /etc/ssh/sshd_config und /etc/ssh/authorized_keys

Mit welchem User meldest du dich am entfernten Server an? Ist von diesem User das Homeverzeichnis verschlüsselt?

Hallo,

hier die gewünschten Infos:

mpw@Ninas-Laptop:~$ cat .ssh/config #Client
cat: .ssh/config: Datei oder Verzeichnis nicht gefunden

mpw@Server0:~$ cat /etc/ssh/sshd_config|grep -v '#\|^$'
Port 22
Protocol 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
HostKey /etc/ssh/ssh_host_ecdsa_key
UsePrivilegeSeparation yes
KeyRegenerationInterval 3600
ServerKeyBits 768
SyslogFacility AUTH
LogLevel INFO
LoginGraceTime 120
PermitRootLogin yes
StrictModes yes
RSAAuthentication yes
PubkeyAuthentication yes
IgnoreRhosts yes
RhostsRSAAuthentication no
HostbasedAuthentication no
PermitEmptyPasswords no
ChallengeResponseAuthentication no
X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog yes
TCPKeepAlive yes
AcceptEnv LANG LC_*
Subsystem sftp /usr/lib/openssh/sftp-server
UsePAM yes
Match User storage
    PasswordAuthentication no
    PubkeyAuthentication yes
mpw@Server0:~$ cat /etc/ssh/authorized_keys|grep -v '#\|^$'
cat: /etc/ssh/authorized_keys: Datei oder Verzeichnis nicht gefunden

An der globalen Konfiguration dürfte es wie gesagt nicht liegen, da es a) mit einem anderen Benutzernamen funktioniert und b) ich heute nochmal von einem anderen Rechner, wo es klappt, die Konfiguration überkopiert habe. Leider ohne Erfolg.

Ich bin echt ratlos.

/edit: An Sparkleshare scheint es nicht zu liegen. Denn auf dem Laptop meiner Freundin (Ninas-Laptop) ist das auch nicht installiert und dort kommt die Zeile auch nicht, wenn ich ssh -vvv .. ausführe.

Was ich nicht verstehe, es kommt gar keine Fehlermeldung:

debug1: Offering RSA public key: /home/mpw/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
debug1: Trying private key: /home/mpw/.ssh/id_dsa

Es sagt einfach nur "wait for reply" und probiert dann kurze Zeit später direkt das id_dsa, das es nicht gibt.

/edit2: Endlich ein Ansatz, sshd loggt in die Datei /var/log/auth.log und dort wird bei einer Anmeldung folgende Zeile ausgegeben:

Oct 28 19:41:02 Server0 sshd[16292]: Authentication refused: bad ownership or modes for directory /home/mpw

/edit3: Gelöst! Google hat mir zu obiger Fehlermeldung die Lösung gezeigt. In dem Ordner ~/.ssh lag ein File, das nicht die richtigen Rechte hatte. Obwohl es nichts mit ssh zu tun hat, hat er sich daran gestört.