Re: Password auth turned off in OpenSSH

From: Darren Tucker (dtucker_at_zip.com.au)
Date: 10/14/04

Next message: John Zavgren: "Re: [SPAM] cross-compilation failing"

Previous message: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
In reply to: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
Next in thread: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
Reply: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 14 Oct 2004 14:54:49 +1000
To: "C. Linus Hicks" <lhicks@nc.rr.com>

C. Linus Hicks wrote:
> Okay, so here's a typical protocol 2 connection attempt, and it does
> show the "Unrecognized authentication method name" message:
[...]
> Several other attempts where made in succession for other users
> including guest, admin (2 times), user, root (3 times), test (again),
> nobody, patrick (2 times), and 2 more times for root. Several hours
> later, someone tried to connect with putty. Notice that this one does
> show "Password authentication disabled" but not the "Unrecognized
> authentication method name":

That's a SSHv1 connection and the message comes from protocol 1 code.
(Older versions of PuTTY would default to protocol 1 if both were
available).

> The information in my log files show that password authentication is not
> being allowed, however, I am noticing that PAM is getting started, yet
> it seems clear to me that there's no need to start it at all. Do I have
> any cause for concern over that?

No, PAM is still needed in case where there is a successful non-password
authentication (eg for the "account" and "session" stacks).

-- 
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
     Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

Next message: John Zavgren: "Re: [SPAM] cross-compilation failing"

Previous message: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
In reply to: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
Next in thread: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
Reply: C. Linus Hicks: "Re: Password auth turned off in OpenSSH"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Problem with SSH
... As long as you're making a Protocol 1 connection ... it should still work with a current version of sshd. ... Good judgement comes with experience. ...
(comp.security.ssh)
Re: SSL vs. SSL over tcp/ip
... that were at different places in the internet backbone ... hierarchical routing (part of the problem was anarchy routing was ... that was only true once the connection was made. ... kernels and tcp/ip protocol stack ... ...
(comp.security.misc)
More info (Re: ppp dialin problems: mgetty and ppp.conf)
... connection to the Internet, however, it appears that if I maintain the ... slots with slot compression ... 0x8057 (Internet Protocol V6 Control Protocol) was rejected! ...
(freebsd-questions)
Re: NetworkFacade 0.4
... This means that the protocol is similar to DRb, but different, ... with regards to connection caching and what happens if connections are ... can be made in both directions down the same socket. ... hostname and a port on the firewall which forwards inbound connections. ...
(comp.lang.ruby)
Re: PPPoE
... The Windows driver README ... Installing the PPP over Ethernet Protocol ... Connection Sharing, ...
(freebsd-net)