Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
Have you configured it with: --with-md5-passwords ? Thus spake Benoît MARTINET, on Mon, Nov 12, 2001 at 12:00:12PM +0100: (Sorry, I've already post this message, but without subject...) Hi, I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied on the command line. A message, Failed password for [user] from .. was logged in auth.log. but i'm sure the password is correct. i wonder if the configuration for PAM is incorrect. Below is the content of /etc/pam.d/ssh: #%PAM-1.0 auth required /lib/security/pam_unix.so shadow nodelay auth required /lib/security/pam_nologin.so accountrequired /lib/security/pam_unix.so password required /lib/security/pam_cracklib.so password required /lib/security/pam_unix.so shadow nullok use_authtok sessionrequired /lib/security/pam_unix.so sessionrequired /lib/security/pam_limits.so all the paths and PAM modules are installed. Do anyone has any idea about all these? At this time, I can connect using a DSA Key, but I would also like to connect using password... Please CC me in private, cause I don't subscribe to this list... Thanks in advance. - Benoît MARTINET - [EMAIL PROTECTED] - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Jose Celestino [EMAIL PROTECTED] Systems Administration SAPO.pt http://www.sapo.pt -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
RE: OpenSSH 3, DEBIAN 2.2 and PAM authentication
This sounds like something I had to help a friend out with this recently. Took me ~15sec to tell him his problem. Configure openssh3 like so: ./configure --with-pam If it whines about the pam headers, pop into dselect and grab 'em, then try it again, compile, install, restart ssh, give a go-round. If it's not this, let us know what fixes it. Steven Beverly exitus acta probat fide, sed cui vide -Original Message- From: Jose Celestino [mailto:[EMAIL PROTECTED]] Sent: Monday, November 12, 2001 4:05 AM To: Benoît MARTINET Cc: debian security list Subject: Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication Have you configured it with: --with-md5-passwords ? Thus spake Benoît MARTINET, on Mon, Nov 12, 2001 at 12:00:12PM +0100: (Sorry, I've already post this message, but without subject...) Hi, I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied on the command line. A message, Failed password for [user] from .. was logged in auth.log. but i'm sure the password is correct. i wonder if the configuration for PAM is incorrect. Below is the content of /etc/pam.d/ssh: #%PAM-1.0 auth required /lib/security/pam_unix.so shadow nodelay auth required /lib/security/pam_nologin.so accountrequired /lib/security/pam_unix.so password required /lib/security/pam_cracklib.so password required /lib/security/pam_unix.so shadow nullok use_authtok sessionrequired /lib/security/pam_unix.so sessionrequired /lib/security/pam_limits.so all the paths and PAM modules are installed. Do anyone has any idea about all these? At this time, I can connect using a DSA Key, but I would also like to connect using password... Please CC me in private, cause I don't subscribe to this list... Thanks in advance. - Benoît MARTINET - [EMAIL PROTECTED] - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Jose Celestino [EMAIL PROTECTED] Systems Administration SAPO.pt http://www.sapo.pt -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied on the command line. A message, Failed password for [user] from .. was logged in auth.log. but i'm sure the password is correct. i wonder if the configuration for PAM is incorrect. Below is the content of /etc/pam.d/ssh: #%PAM-1.0 Looks fine to me. I think OpenSSH uses /etc/pam.d/sshd (Note the d in the end). Try renaming your pam config file. At this time, I can connect using a DSA Key, but I would also like to connect using password... SSH public key authentication is not handled by pam, sshd does that itself. MfG, Carsten Nottebohm -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied [...] Have you configured it with: --with-md5-passwords ? Thanks, that solve the problem... Ben. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
Thus spake Benoît MARTINET, on Mon, Nov 12, 2001 at 02:52:15PM +0100: I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied [...] Have you configured it with: --with-md5-passwords ? Thanks, that solve the problem... Ben. You're welcome. Check to see if you /etc/shadow password entries start with $1$, if so they are MD5, and md5 isn't enabled by the default ./configure on openssh-3.0p1 so... Best regards. -- Jose Celestino [EMAIL PROTECTED] - Not only is God dead, but just try to find a plumber on weekends. --Woody Allen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
Have you configured it with: --with-md5-passwords ? Thus spake Benoît MARTINET, on Mon, Nov 12, 2001 at 12:00:12PM +0100: (Sorry, I've already post this message, but without subject...) Hi, I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied on the command line. A message, Failed password for [user] from .. was logged in auth.log. but i'm sure the password is correct. i wonder if the configuration for PAM is incorrect. Below is the content of /etc/pam.d/ssh: #%PAM-1.0 auth required /lib/security/pam_unix.so shadow nodelay auth required /lib/security/pam_nologin.so accountrequired /lib/security/pam_unix.so password required /lib/security/pam_cracklib.so password required /lib/security/pam_unix.so shadow nullok use_authtok sessionrequired /lib/security/pam_unix.so sessionrequired /lib/security/pam_limits.so all the paths and PAM modules are installed. Do anyone has any idea about all these? At this time, I can connect using a DSA Key, but I would also like to connect using password... Please CC me in private, cause I don't subscribe to this list... Thanks in advance. - Benoît MARTINET - [EMAIL PROTECTED] - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Jose Celestino [EMAIL PROTECTED] Systems Administration SAPO.pt http://www.sapo.pt
RE: OpenSSH 3, DEBIAN 2.2 and PAM authentication
This sounds like something I had to help a friend out with this recently. Took me ~15sec to tell him his problem. Configure openssh3 like so: ./configure --with-pam If it whines about the pam headers, pop into dselect and grab 'em, then try it again, compile, install, restart ssh, give a go-round. If it's not this, let us know what fixes it. Steven Beverly exitus acta probat fide, sed cui vide -Original Message- From: Jose Celestino [mailto:[EMAIL PROTECTED] Sent: Monday, November 12, 2001 4:05 AM To: Benoît MARTINET Cc: debian security list Subject: Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication Have you configured it with: --with-md5-passwords ? Thus spake Benoît MARTINET, on Mon, Nov 12, 2001 at 12:00:12PM +0100: (Sorry, I've already post this message, but without subject...) Hi, I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied on the command line. A message, Failed password for [user] from .. was logged in auth.log. but i'm sure the password is correct. i wonder if the configuration for PAM is incorrect. Below is the content of /etc/pam.d/ssh: #%PAM-1.0 auth required /lib/security/pam_unix.so shadow nodelay auth required /lib/security/pam_nologin.so accountrequired /lib/security/pam_unix.so password required /lib/security/pam_cracklib.so password required /lib/security/pam_unix.so shadow nullok use_authtok sessionrequired /lib/security/pam_unix.so sessionrequired /lib/security/pam_limits.so all the paths and PAM modules are installed. Do anyone has any idea about all these? At this time, I can connect using a DSA Key, but I would also like to connect using password... Please CC me in private, cause I don't subscribe to this list... Thanks in advance. - Benoît MARTINET - [EMAIL PROTECTED] - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Jose Celestino [EMAIL PROTECTED] Systems Administration SAPO.pt http://www.sapo.pt -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied on the command line. A message, Failed password for [user] from .. was logged in auth.log. but i'm sure the password is correct. i wonder if the configuration for PAM is incorrect. Below is the content of /etc/pam.d/ssh: #%PAM-1.0 Looks fine to me. I think OpenSSH uses /etc/pam.d/sshd (Note the d in the end). Try renaming your pam config file. At this time, I can connect using a DSA Key, but I would also like to connect using password... SSH public key authentication is not handled by pam, sshd does that itself. MfG, Carsten Nottebohm
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
On Mon, Nov 12, 2001 at 02:21:11PM +0100, Carsten Nottebohm wrote: Looks fine to me. I think OpenSSH uses /etc/pam.d/sshd (Note the d in the end). Try renaming your pam config file. To be exact, SSH uses whatever the binary is named. So if you name it opensshd it'll use /etc/pam.d/opensshd. If you name it sshd it will use /etc/pam.d/sshd etc :) That's what I read last week in some docs on the OpenSSH site :) Mark Janssen Unix Consultant @ SyConOS IT E-mail: [EMAIL PROTECTED] GnuPG Key Id: 357D2178 http: maniac.nl, unix-god.[net|org], markjanssen.[com|net|org|nl]
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied [...] Have you configured it with: --with-md5-passwords ? Thanks, that solve the problem... Ben.
Re: OpenSSH 3, DEBIAN 2.2 and PAM authentication
Thus spake Benoît MARTINET, on Mon, Nov 12, 2001 at 02:52:15PM +0100: I've just compiled installed openssh-3.0p1 on my Debian 2.2 but failed to login using root and users' passwords. Password authentication failed all the time and it prompted Permission Denied [...] Have you configured it with: --with-md5-passwords ? Thanks, that solve the problem... Ben. You're welcome. Check to see if you /etc/shadow password entries start with $1$, if so they are MD5, and md5 isn't enabled by the default ./configure on openssh-3.0p1 so... Best regards. -- Jose Celestino [EMAIL PROTECTED] - Not only is God dead, but just try to find a plumber on weekends. --Woody Allen