More ssh key authentication problems

[nigelm]

I am trying out Yummy FTP having been using Cyberduck (successfully, although slowly, with this configuration).

Using SSHKeyChain I have the ssh keys in my key agent:-
  % ssh-add -l
  1024 09:f9:11:02:9d:74:e3:5b:d8:41:56:c5:63:56:88:c0 /Users/nm/.ssh/id_rsa (RSA)

I can command line ssh/scp to the box I am trying to access, without entering any passwords.

If I try to connect to the box with Yummy FTP, with the use SSH Key checkbox ticked (but no key selected)
then it fails with:-

   Message from the Server:
   Permission denied, please try again.
   Permission denied, please try again.
   Permission denied (publickey,gssapi-with-mic,password)

I also tried launching from the command line, and found that there was a text prompt for the key password on the command line.

It behaves the same way if an explicit key is specified (matches the one in ssh-agent).

I haven't tried using it with normal password authentication because we do not have that enabled on any of the servers.

Any ideas as to what I should try next?

   Nigel.

[JD]

I'm testing this out now, and I think there's an incompatibility with SSHKeychain, although SSHAgent works just fine. I should be able to fix this up pretty quickly and get a beta ready.

In the meantime though, specifying the key file directly in the connection details should be working. Please double check this.

[nigelm]

Quite definitely does the same thing if I specify the (private) key file. 
Doesn't ask for a password for the key.
Makes no difference if I use the main key file itself, or the copy I keep around (Cyberduck for some reason used to fail with the key file if there was anything else using it - ie ssh sessions, agent whatever - so I have an exact copy of the file I used for Cyberduck).

[JD]

I've double checked that specifying the keyfile directly in Yummy does work, both for keyfiles with or without passphrases

To be clear:

If your keyfile has a passphrase you must enter it into the Password field - you will not be prompted for it when you make a connection. This is to allow for keyfiles which have no passphrase. If your keyfile has a passphrase and you enter it into the Password field, it will be stored into the Apple Keychain when you make a connection and then the Password field will be blanked out in any Bookmark you save. Subsequent connections will fetch the passphrase from the Keychain.

I will work to fix the incompatibility with SSHKeychain.

[nigelm]

Ah - had misunderstood how that was working.  Will try it again tomorrow (left Mac at work this time).

[JD]

Ok, no problem. I'm certain you'll find it working when you do

[JD]

The glitch with SSHKeychain has now been fixed in the latest build

I'm aiming to get a new beta out after the weekend, of which you will be automatically notified by the software update mechanism introduced in version 1.6

[nigelm]

Yummy FTP is working appropriately for me when a passworded ssh key is explicitly specified to the connection/bookmark dialog and the key password is put in - as stated before I had missed that use of the password space (I see there is a clear and complete description of it as a tooltip - but not having pointed there before I hadn't seen it.

I'll give the new version a go as soon as its available.

This is so much faster at moving data than Cyberduck.

Thanks for the fast response.

[JD]

Thanks for the confirmation, nigelm!

I hope to make you even happier next week 

[nigelm]

Sorry for the long delay (managed to trash my home directory and I have been rather busy with real work(tm)), however I have now been using YummyFTP 1.6.1b1 for a week and the SshKeyChain based key authentication is working very nicely for me.

Many thanks
    Nigel.

[JD]

Excellent! Thank you for the followup, Nigel