|
I have studied ur response on marc.theaimgroups.com.
What actually need to get =>
/etc/pam.d/sshd?
Do I need to cp the sshd file, which will be
existed at /usr/local/sbin/sshd after installing openSSH?
or need rename the
contrib/sshd.pam.generic => mv sshd.pam.generic sshd
and do I place in /etc/pam.d/
and how to make enable accessable or
publickey,keyboard-interactive?
I have updated the /usr/local/etc/sshd_config file
line 55, uncommented.
PAMAuthenticationViaKbdInt yes
But, unable to login.
Please, elobrate me. I am newbie.
I am facing following problem.
>>>>>>>>>>>>>>
Debug mode:
[root@qclinux bin]# ./ssh -v
192.168.1.235
OpenSSH_2.9p2, SSH protocols 1.5/2.0, OpenSSL 0x0090602f debug1: Reading configuration data /usr/local/etc/ssh_config debug1: Seeding random number generator debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: restore_uid debug1: ssh_connect: getuid 0 geteuid 0 anon 1 debug1: Connecting to 192.168.1.235 [192.168.1.235] port 22. debug1: temporarily_use_uid: 0/0 (e=0) debug1: restore_uid debug1: temporarily_use_uid: 0/0 (e=0) debug1: restore_uid debug1: Connection established. debug1: read PEM private key done: type DSA debug1: read PEM private key done: type RSA debug1: identity file /root/.ssh/identity type -1 debug1: identity file /root/.ssh/id_rsa type -1 debug1: identity file /root/.ssh/id_dsa type -1 debug1: Remote protocol version 1.99, remote software version OpenSSH_2.9p2 debug1: match: OpenSSH_2.9p2 pat ^OpenSSH Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_2.9p2 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: dh_gen_key: priv key bits set: 131/256 debug1: bits set: 1030/2049 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host '192.168.1.235' is known and matches the RSA host key. debug1: Found key in /root/.ssh/known_hosts2:1 debug1: bits set: 1021/2049 debug1: ssh_rsa_verify: signature correct debug1: kex_derive_keys debug1: newkeys: mode 1 debug1: SSH2_MSG_NEWKEYS sent debug1: waiting for SSH2_MSG_NEWKEYS debug1: newkeys: mode 0 debug1: SSH2_MSG_NEWKEYS received debug1: done: ssh_kex2. debug1: send SSH2_MSG_SERVICE_REQUEST debug1: service_accept: ssh-userauth debug1: got SSH2_MSG_SERVICE_ACCEPT debug1: authentications that can continue: publickey,keyboard-interactive debug1: next auth method to try is publickey debug1: try privkey: /root/.ssh/identity debug1: try privkey: /root/.ssh/id_rsa debug1: try privkey: /root/.ssh/id_dsa debug1: next auth method to try is keyboard-interactive debug1: authentications that can continue: publickey,keyboard-interactive debug1: authentications that can continue: publickey,keyboard-interactive debug1: authentications that can continue: publickey,keyboard-interactive debug1: no more auth methods to try Permission denied (publickey,keyboard-interactive). debug1: Calling cleanup 0x8060a14(0x0) >>>>>>> And when run ssh client or putty
========>
>>>>>>>>>>>>>>>>>
I have successfully installed openSSH after
installing the openSSL on RedHat linux 6.2 box
and had run /usr/local/sbin/sshd -f
/usr/local/etc/sshd_config
and checked process list. ps -aux, it's
there.
>>
root
1211 0.0 1.4 2168 932 ? S
07:49 0:00 ./sshd -f
/usr/local/etc/sshd_config
>> When I tried to login using ssh client
putty.exe giving following error:
>>>
login as: user1
Sent username "user1" [EMAIL PROTECTED]'s password: Access denied [EMAIL PROTECTED]'s password: >>>>>>>>>>>> So, I tried from telnet, but getting following
error and unable to login.
>>>>>>>>>>>
[root@qclinux bin]# ./ssh localhost -l
root
Permission denied (publickey,keyboard-interactive). [root@qclinux bin]# ./ssh 192.168.1.235 -l root The authenticity of host '192.168.1.235 (192.168.1.235)' can't be established. RSA key fingerprint is e1:74:f2:db:1d:17:aa:fa:0e:c5:64:72:87:1d:e7:52. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.1.235' (RSA) to the list of known hosts. Permission denied (publickey,keyboard-interactive). >>>>>>>>>>>>>
Kindly, please help in this regard. How to get
accessing my sshd.
Thanks in advance for any help.
-SubbaReddy List: secure-shell
Subject: RE: Permission denied 2.9p2 RH 6.2 From: Abdul Rahman <[EMAIL PROTECTED]> Date: 2001-07-30 14:50:12 [Download message RAW] In addition from the INSTALL file for openssh 2.9p2: If you are using PAM, you may need to manually install a PAM control file as "/etc/pam.d/sshd" (or wherever your system prefers to keep them). Note that the service name used to start PAM is __progname, which is the basename of the path of your sshd (e.g., the service name for /usr/sbin/osshd will be osshd). If you have renamed your sshd executable, your PAM configuration may need to be modified. A generic PAM configuration is included as "contrib/sshd.pam.generic", you may need to edit it before using it on your system. If you are using a recent version of Red Hat Linux, the config file in contrib/redhat/sshd.pam should be more useful. Failure to install a valid PAM file may result in an inability to use password authentication. On HP-UX 11 and Solaris, the standard /etc/pam.conf configuration will work with sshd (sshd will match the other service name). I had the same problem ar ____________________ Abdul Rahman, Ph.D. Manager Sevenspace 703.961.5765 D 703.625.9871 M collaborate.compete.win |
