Thys Meintjes on Mon, 2 Oct 2000 14:10:51 +0200


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: GLUG: OpenSSH2 

you sure sshd is in /etc/pam.d ?, move it there from your source ./redhat dir
if not

mine (standard) looks thusly:
#%PAM-1.0
auth       required     /lib/security/pam_pwdb.so shadow nodelay
auth       required     /lib/security/pam_nologin.so
account    required     /lib/security/pam_pwdb.so
password   required     /lib/security/pam_cracklib.so
password   required     /lib/security/pam_pwdb.so shadow nullok use_authtok
session    required     /lib/security/pam_pwdb.so
session    required     /lib/security/pam_limits.so


On Thu, 28 Sep 2000, you wrote:
> I get the following output when I run ssh -2 -v localhost
> 
> SSH Version OpenSSH_2.2.0p1, protocol versions 1.5/2.0.
> Compiled with SSL (0x0090600f).
> debug: Reading configuration data /etc/ssh/ssh_config
> debug: ssh_connect: getuid 0 geteuid 0 anon 0
> debug: Connecting to localhost [127.0.0.1] port 22.
> debug: Seeding random number generator
> debug: Allocated local port 787.
> debug: Connection established.
> debug: Remote protocol version 1.99, remote software version
> OpenSSH_2.2.0p1
> Enabling compatibility mode for protocol 2.0
> debug: Local version string SSH-2.0-OpenSSH_2.2.0p1
> debug: send KEXINIT
> debug: done
> debug: wait KEXINIT
> debug: got kexinit: diffie-hellman-group1-sha1
> debug: got kexinit: ssh-dss
> debug: got kexinit: 3des-cbc,blowfish-cbc,arcfour,cast128-cbc
> debug: got kexinit: 3des-cbc,blowfish-cbc,arcfour,cast128-cbc
> debug: got kexinit: hmac-sha1,hmac-md5,hmac-ripemd160@xxxxxxxxxxx
> debug: got kexinit: hmac-sha1,hmac-md5,hmac-ripemd160@xxxxxxxxxxx
> debug: got kexinit: zlib,none
> debug: got kexinit: zlib,none
> debug: got kexinit: 
> debug: got kexinit: 
> debug: first kex follow: 0 
> debug: reserved: 0 
> debug: done
> debug: kex: server->client 3des-cbc hmac-sha1 none
> debug: kex: client->server 3des-cbc hmac-sha1 none
> debug: Sending SSH2_MSG_KEXDH_INIT.
> debug: bits set: 515/1024
> debug: Wait SSH2_MSG_KEXDH_REPLY.
> debug: Got SSH2_MSG_KEXDH_REPLY.
> debug: Forcing accepting of host key for loopback/localhost.
> debug: bits set: 528/1024
> debug: len 55 datafellows 0
> debug: dsa_verify: signature correct
> debug: Wait SSH2_MSG_NEWKEYS.
> debug: GOT SSH2_MSG_NEWKEYS.
> debug: send SSH2_MSG_NEWKEYS.
> debug: done: send SSH2_MSG_NEWKEYS.
> debug: done: KEX2.
> debug: send SSH2_MSG_SERVICE_REQUEST
> debug: service_accept: ssh-userauth
> debug: got SSH2_MSG_SERVICE_ACCEPT
> debug: authentications that can continue: publickey,password
> debug: try pubkey: /root/.ssh/id_dsa
> debug: read DSA private key done
> debug: sig size 20 20
> debug: authentications that can continue: publickey,password
> root@localhost's password: 
> debug: authentications that can continue: publickey,password
> Permission denied, please try again.
> root@localhost's password: 
> debug: authentications that can continue: publickey,password
> Permission denied, please try again.
> root@localhost's password: 
> debug: authentications that can continue: publickey,password
> Permission denied (publickey,password).
> debug: Calling cleanup 0x805b61c(0x0)
> root@jaco:~# 
> 
> 
> 
> Christian Burger wrote:
> > 
> > are trying to log in as root? can the server reverse lookup your pc? go
> > look at the sshd_config. also look at your log files (messages,
> > authpriv, etc.). They usually tell you exactly what the problem is
> > 
> > --
> > Regards
> > 
> > /cjb
> ---
> To unsubscribe from this list: send the line "unsubscribe glug" in
> the body of a message to majordomo@xxxxxxxxxxxxx If you have a
> problem unsubscribing, please mail owner-glug@xxxxxxxxxxxx
-- 
..