SSH problems.

From: Leonardo Velloso Heitor (lheitor@BR.IBM.COM)
Date: Tue Jul 16 2002 - 09:48:51 EDT

• Next message: Steve Argersinger: "Re: Too many PPs in a PV"
• Previous message: Bob Booth - UIUC: "Re: Too many PPs in a PV"
• Next in thread: John Jolet: "Re: SSH problems."
• Reply: John Jolet: "Re: SSH problems."
• Maybe reply: Adams Kevin J: "Re: SSH problems."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi AIX'ers...

      For security reasons, I need to block RSH for all servers. I decided
to install OPENSSH 3.2.0.1 from Bullfreeware to change RSH. My AIX system
is setup to not allow remote logins using the file /etc/security/user.
      On my lab systems( that still allow rsh), I can use rsh to run
commands, but I cannot login.
      When I try to do the same with ssh, it does not work.

      Any thoughts on matter would be greatly appreciated.

For the command:
# ssh lab1 date"
root@lab1's password:

I saw at "sshd -d" output:

...
...
debug1: userauth-request for user root service ssh-connection method none
debug1: attempt 0 failures 0
Login restricted for root: Remote logins are not allowed for this account.
input_userauth_request: illegal user root
Failed none for illegal user root from 150.251.38.15 port 36792 ssh2
debug1: userauth-request for user root service ssh-connection method
publickey
debug1: attempt 1 failures 1
Failed publickey for illegal user root from 150.251.38.15 port 36792 ssh2
debug1: userauth-request for user root service ssh-connection method
keyboard-interactive
debug1: attempt 2 failures 2
debug1: keyboard-interactive devs
debug1: auth2_challenge: user=root devs=
debug1: kbdint_alloc: devices ''
Failed keyboard-interactive for illegal user root from 150.251.38.15 port
36792 ssh2

I have following parameters at sshd_config:

Port 22
Protocol 2,1
HostKey /etc/openssh/ssh_host_key
HostKey /etc/openssh/ssh_host_rsa_key
HostKey /etc/openssh/ssh_host_dsa_key
KeyRegenerationInterval 3600
ServerKeyBits 768
SyslogFacility AUTH
LogLevel INFO
LoginGraceTime 600
PermitRootLogin yes
StrictModes yes
RSAAuthentication yes
PubkeyAuthentication yes
AuthorizedKeysFile %h/.ssh/authorized_keys
RhostsAuthentication no
IgnoreRhosts yes
RhostsRSAAuthentication no
HostbasedAuthentication no
PasswordAuthentication yes
PermitEmptyPasswords no
X11Forwarding no
X11DisplayOffset 10
PrintMotd yes
KeepAlive yes
UseLogin no
PidFile /var/openssh/sshd.pid

Kind Regards,
_______________________________________________________________

Leonardo Velloso Heitor
ERP - Technical Support Team
mailto: lheitor@br.ibm.com

• Next message: Steve Argersinger: "Re: Too many PPs in a PV"
• Previous message: Bob Booth - UIUC: "Re: Too many PPs in a PV"
• Next in thread: John Jolet: "Re: SSH problems."
• Reply: John Jolet: "Re: SSH problems."
• Maybe reply: Adams Kevin J: "Re: SSH problems."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 22:16:04 EDT