Key based authentification problem

Hi there,

I’m having problems getting key based authentication to work on my debian hornblade image. I’m getting a connection and i’m asked to give the key password, then i always get an invalid username password error.

I’m following the steps from this website (this always worked on my rpis and tinkerboard s):
ssh key link

This is my sshd file:
Protocol 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
HostKey /etc/ssh/ssh_host_ecdsa_key
HostKey /etc/ssh/ssh_host_ed25519_key
UsePrivilegeSeparation yes
SyslogFacility AUTH
LogLevel INFO
LoginGraceTime 120
StrictModes yes
PubkeyAuthentication yes
IgnoreRhosts yes
HostbasedAuthentication no
PermitEmptyPasswords no
ChallengeResponseAuthentication no
X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog yes
TCPKeepAlive yes
AcceptEnv LANG LC_*
Subsystem sftp /usr/lib/openssh/sftp-server
UsePAM yes
AllowGroups root ssh linaro
AddressFamily any
Port 22
PermitRootLogin no
AllowTcpForwarding no
Compression no
PasswordAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys .ssh/authorized_keys2 /var/lib/openmediavault/ssh/authorized_keys/%u
PubkeyAuthentication yes

This is my authorized_keys file:
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDclEos53cYjA8hUkMTH5JGfz6P8hOjY/+vH1xufMVjJgSdpkDBE8GiS4tcQhmJhUg41GAN4uyWpbWHj5b8MN0WJoDWNsiAZu7Coy8AMQHAC8v/9pq7+wVDL8jHJTb35x405FnuVUOq+pZlHd4W+I4LFRsRmYKN2N2I4QNZfaNMh/bf4CcXVFP2lTKFPt6ExE7C6jXxc3qSMDvcwU2CmyIUwQMQfzoDl8KOyfhyj2CmGKupXsN6QkYXNSdPan5qGzNJTYdjVTDMuJsbeK8ZsWWmV/pjdgy9/2LG3q1Qma3TACgzAlQ0RqtVBUc38lbiNMyCHTWfZeKQdAxBH6MSoUNF linaro@XXX

ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCtxfpB8rXjDgPMqClkhDNnfrEBM/1ig8KpgcVOUCDRBh3vjFpKrQ0UFRGYYNGTwe3g2kdNkHW4Cd/K6vKPsO/x9MUj6KPR62MSHCA0EPJpafHvfaGEu+ijGOcjoRJPvN/3iEonb7IYhNPaBcEkNmlQe++O6kcsipCl5/3C1JT63F29CRPU64h9oKqfcY+nVVRkLToaikKtk2D5JaA8lbJDKWLOuNV99WabaTJk4Hhs8LThBgNfSnjfIqKqMfzXM/dsIxpamI5pG2ZPwcQsERkD8+753WVMU3cmXmM9nmeCrw1IBOVeSSfMcQkwAlbDw80yiioFADOxe3jjo6zLbfMd linaro@XXX

These are my pubkey 1:
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCtxfpB8rXjDgPMqClkhDNnfrEBM/1ig8KpgcVOUCDRBh3vjFpKrQ0UFRGYYNGTwe3g2kdNkHW4Cd/K6vKPsO/x9MUj6KPR62MSHCA0EPJpafHvfaGEu+ijGOcjoRJPvN/3iEonb7IYhNPaBcEkNmlQe++O6kcsipCl5/3C1JT63F29CRPU64h9oKqfcY+nVVRkLToaikKtk2D5JaA8lbJDKWLOuNV99WabaTJk4Hhs8LThBgNfSnjfIqKqMfzXM/dsIxpamI5pG2ZPwcQsERkD8+753WVMU3cmXmM9nmeCrw1IBOVeSSfMcQkwAlbDw80yiioFADOxe3jjo6zLbfMd linaro@XX

This is my pubkey 2:
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDclEos53cYjA8hUkMTH5JGfz6P8hOjY/+vH1xufMVjJgSdpkDBE8GiS4tcQhmJhUg41GAN4uyWpbWHj5b8MN0WJoDWNsiAZu7Coy8AMQHAC8v/9pq7+wVDL8jHJTb35x405FnuVUOq+pZlHd4W+I4LFRsRmYKN2N2I4QNZfaNMh/bf4CcXVFP2lTKFPt6ExE7C6jXxc3qSMDvcwU2CmyIUwQMQfzoDl8KOyfhyj2CmGKupXsN6QkYXNSdPan5qGzNJTYdjVTDMuJsbeK8ZsWWmV/pjdgy9/2LG3q1Qma3TACgzAlQ0RqtVBUc38lbiNMyCHTWfZeKQdAxBH6MSoUNF linaro@XXX

This is my private key 1 (exported to terminus on my ipad):
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-128-CBC,2EB97B448099E2E3879BD8490E00FDDE
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-----END RSA PRIVATE KEY-----

This is my private key 2 (exported to terminus on my ipad):
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-128-CBC,4EA9E6C5040BE095CC3801AD279060F6
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-----END RSA PRIVATE KEY-----

Both keys are built on the rockpi, but i’ve also tried to build them on the ipad, same result. Could this maybe have to do with character formatting between UTF-8 and another one maybe ? That’s my only guess…
Obviously i’ll delete the keys after this is fixed for security reasons.

does anyone have an idea what doing wrong here ?

Thanx in advance.

Found it…

Needed to set ~/.ssh to 755 instead of 700.

very weird…

Yeah its a problem as with several years of experience playing with SoCs mainly Rockchip with the obligatory Pi collection and a few allwinners the biggest problem is finding images that have a big community behind them.
That is what gives opensource its strength as the opensource pack/flock feedback improve the strength of the source.
There isn’t a huge community here and you have picked a community image that is used by a subsection so the community is even smaller.
Each board manufacturer has been hosting a few builds of there own modifications and they have been chipping away at getting full functionality from the SoC and as a group submitting patches to Rockchip & Linux which again has been pack/flock mechanism.
The communities around a single board have been relatively small often trying to provide a huge number of specific distro’s for with many patches and it just doesn’t work because there isn’t the numbers.
What it does is provide opensource feedback to mainline linux that represents the whole and that has been building up for several years and the RK3399 and its practically 100% complete in the mainline.
But many of the community images are fleeting and often a fix at a single time, even the 4.4 main images will eventually be lost in time to mainline.

Manjaro / Arch because they are a rolling release and so always bleeding edge are going to be the first to release mainline uboot and kernel with the Manjaro/Arch rootfs and from that point you move out of a Radxa image and into the bigger community of manjaro and much bigger community of arch.
Ubuntu is likely to be the next and the first standard release mailine as 19.10 October 17 on 5.3 will be release and like Manjaro/Arch its will have uboot & mainline, theirs static 5.3 series for that release 19.10, which is not an LTS but the community is still big.
After that any Distro employing kernel 5.2+ is likely to be pure mainline without the need for distro patches and many will come on line.

With Radxa images you have a relatively small community and with other images even less so as you just don’t know how they have been compiled, what packages and changes have been made.
They are perfectly good images but have much smaller communities and resources and often you are unsure of any datum to compare.