Re: OpenSSH 2.5.2p2, Linux, and not accepting passwords
Same problem here... Redhat 6.2 kernel 2.2.19 OpenSSH 2.9p2 Haven't found a solution yet. :-( regards Jan - Original Message - From: Roy S. Rapoport [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, August 10, 2001 9:56 AM Subject: OpenSSH 2.5.2p2, Linux, and not accepting passwords Well this is bizarre. Default install of openssh on this linux box (originally RedHat but I think someone's put a new kernel on it -- it reports itself as 2.2.12-20 when I do uname -a. Sorry, Solaris is my forte, not Linux). It all works. Oh, except for logging in using password authentication. It prompts for a password, but reports incorrect password. And, umm, I'm pretty darn sure I type it correctly. That's not an issue. How the heck do I debug this? -roy
Re: Strange message...
Trouble? Not really. I get the same message, if I try to login with a non-existing username (ie. JAN and not jan). I didn't like the message, so I asked the SSH hotline. Their answer was: Yes, I agree that the message looks somewhat bad. If you don't want to see that kind of information on console just edit the /etc/syslog.conf file. You can define the syslog facility used by sshd2 in the sshd2_config file (man sshd2_config, keyword SyslogFacility). Best regards Jan - Original Message - From: Bas To: [EMAIL PROTECTED] Sent: Thursday, March 22, 2001 6:28 AM Subject: Strange message... Hi, I was wondering: Mar 21 14:15:01 wisdom sshd2[511]: connection from "212.204.172.59"Mar 21 14:15:07 wisdom sshd2[28815]: root login denied for user 'root'.Mar 21 14:24:38 wisdom sshd2[511]: connection from "212.204.172.59"Mar 21 14:24:43 wisdom sshd2[28818]: FATAL ERROR: sshunixuser.c:1718 SshUnixUserssh_user_get_groups Precondition failed: ucMar 21 14:24:50 wisdom sshd2[511]: connection from "212.204.172.59"Mar 21 14:24:54 wisdom sshd2[28819]: FATAL ERROR: sshunixuser.c:1718 SshUnixUserssh_user_get_groups Precondition failed: ucMar 21 14:25:01 wisdom sshd2[28815]: LoginGraceTime exceeded. Am I in trouble now ? Thanks,Bas.
Re: Strange message...
Say what? My err msg looks like this: Jan 23 20:00:18 SUNrise sshd2[305]: FATAL ERROR: sshunixuser.c:1718 SshUnixUser (function name unavailable) Precondition failed: uc Regards Jan - Original Message - From: Bas To: Jan Egeriis Sent: Thursday, March 22, 2001 7:32 AM Subject: Re: Strange message... Thanks. Is the username they're trying to use in the message as well ? Bas. - Original Message - From: Jan Egeriis To: Bas Cc: Sent: Wednesday, March 21, 2001 1:15 PM Subject: Re: Strange message... Trouble? Not really. I get the same message, if I try to login with a non-existing username (ie. JAN and not jan). I didn't like the message, so I asked the SSH hotline. Their answer was: Yes, I agree that the message looks somewhat bad. If you don't want to see that kind of information on console just edit the /etc/syslog.conf file. You can define the syslog facility used by sshd2 in the sshd2_config file (man sshd2_config, keyword SyslogFacility). Best regards Jan - Original Message - From: Bas To: [EMAIL PROTECTED] Sent: Thursday, March 22, 2001 6:28 AM Subject: Strange message... Hi, I was wondering: Mar 21 14:15:01 wisdom sshd2[511]: connection from "212.204.172.59"Mar 21 14:15:07 wisdom sshd2[28815]: root login denied for user 'root'.Mar 21 14:24:38 wisdom sshd2[511]: connection from "212.204.172.59"Mar 21 14:24:43 wisdom sshd2[28818]: FATAL ERROR: sshunixuser.c:1718 SshUnixUserssh_user_get_groups Precondition failed: ucMar 21 14:24:50 wisdom sshd2[511]: connection from "212.204.172.59"Mar 21 14:24:54 wisdom sshd2[28819]: FATAL ERROR: sshunixuser.c:1718 SshUnixUserssh_user_get_groups Precondition failed: ucMar 21 14:25:01 wisdom sshd2[28815]: LoginGraceTime exceeded. Am I in trouble now ? Thanks,Bas.
Re: Possible to avoid Reverse mapping in SSH Secure Shell sshd2
Thanks Tim, but this is not the one I want. Setting this option to "yes" will let me connect even though the server cannot resolve my ip adress. ...but the server wil still try to do the ReverseMapping. :-( Regards Jan - Original Message - From: "Tim" [EMAIL PROTECTED] To: "Jan Egeriis" [EMAIL PROTECTED] Sent: Wednesday, January 24, 2001 2:19 AM Subject: Re: Possible to avoid Reverse mapping in SSH Secure Shell sshd2 On Tue, Jan 23, 2001 at 07:25:27PM +0100, Jan Egeriis wrote: Hi, Is there is an option, that will make ssh2d stop trying to reversemap incoming connections? [snip] From the SSHD2 man page: = RequireReverseMapping = This is used to check whether hostname DNS lookup must succeed when checking whether = connections from host are allowed using AllowHosts and DenyHosts. If this is set to = yes, then if name lookup fails, the connection is denied. If set to no, if name = lookup fails, the remote host's IP address is used to check whether it is allowed to = connect. This is probably not what you want if you have specified only host names = (not IP addresses) with {Allow,Deny}Hosts. The default is "no". The argument must be = "yes" or "no".
Possible to avoid Reverse mapping in SSH Secure Shell sshd2
Hi, Is there is an option, that will make ssh2d stop trying to reversemap incoming connections? When I am connecting to my server (SSH Secure Shell 2.4.0/Solaris 8/SUN E220R) I get the following messages: Jan 23 19:12:36 SUNrise sshd2[390]: DNS lookup failed for "10.0.0.145". Jan 23 19:12:40 SUNrise sshd2[390]: User root's local password accepted. Jan 23 19:12:40 SUNrise sshd2[390]: Password authentication for user root accepted. Jan 23 19:12:40 SUNrise sshd2[390]: User root, coming from 10.0.0.145, authenticated. The messages are okay, but the reversemapping is also taking 3-5 seconds, which is rather annoying. I can put all my hostnames/adresses in the hosts file, but I would like to avoid that. What to do ? BTW: I believe this list is open for all ssh releases? If not - I'm sorry for the inconvenience. Regards Jan