GNU bug report logs - #54950
Connecting to remote guix daemon with encrypted SSH key fails

Package: guix;

Reported by: Arun Isaac <arunisaac <at> systemreboot.net>

Date: Fri, 15 Apr 2022 11:10:01 UTC

Severity: normal

View this message in rfc822 format

From: Maxim Cournoyer <maxim.cournoyer <at> gmail.com>
To: Arun Isaac <arunisaac <at> systemreboot.net>
Cc: 54950 <at> debbugs.gnu.org
Subject: bug#54950: Connecting to remote guix daemon with encrypted SSH key fails
Date: Wed, 08 Jun 2022 16:30:28 -0400

Hi,

Arun Isaac <arunisaac <at> systemreboot.net> writes:

> I have an SSH key encrypted with a passphrase. When I try connecting to
> a remote guix daemon with that encrypted SSH key, it fails with the
> following error message.
>
> $ GUIX_DAEMON_SOCKET=ssh://foo guix build -v3 hello
> guix build: error: SSH authentication failed for 'foo': Access
> denied for 'publickey'. Authentication that can continue: publickey
>
> I expected some kind of prompt asking me for the passphrase, but did not
> get any. The same command works if I set up ssh-agent and add the
> relevant key to it.

I suspect this is due to changes in OpenSSH *client* that now refuse
older RSA keys for security reasons.

Could you retry with the following option: 'StrictHostKeyChecking no'
applied to the host in your ~/.ssh/config?

If that's indeed the problem, you'll want to upgrade your key to
something more modern like ed25519.

I hope that helps,

Maxim

This bug report was last modified 2 years and 364 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #54950 Connecting to remote guix daemon with encrypted SSH key fails

GNU bug report logs - #54950
Connecting to remote guix daemon with encrypted SSH key fails