can't get openssh-3.4p1 to authenticate (failed password and permission denied)
From: bad_knee (jigglefish21@yahoo.com)Date: 06/29/02
- Next message: where: "Re: trouble with OpenSSH_3.4p1"
- Previous message: Nico Kadel-Garcia: "RedHat has posted updated OpenSSH 3.1p1"
- Next in thread: Roy Smith: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Reply: Roy Smith: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Reply: kwan@digitalhermit.com: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Reply: bad_knee: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: jigglefish21@yahoo.com (bad_knee) Date: 29 Jun 2002 07:57:14 -0700
To make a long stroy short, where are the dox for setting up 3.4p1? I
had
ssh working fine prior to 3.4p1.. just getting "permission denied" on
the
client and "failed password" on the server. I nuked my old server and
client keys and re-did make install on both. I've also checked my
caps-lock..
twice.
I'm sure it's a RTFM..but I can't figure out what I've got wrong here.
I've
installed openssh (prior to 3.4p1) on a lot of different machines and
never had such trouble getting it up and running. I'm thinking it
has something to do with the new privsep stuff, but I've followed that
to the 'T' right from README.privsep.
PS: what's the deal with "Not a RSA 1 key" ? I'm pretty sure
That was generated by make install
SERVER
===============================================================
[0943][root@fungus:/usr/local/openssh-3.4p1/etc]$
/usr/local/openssh-3.4p1/sbin/sshd -ddd -f /usr/local/openssh-3.4p
1/etc/sshd_config
debug1: sshd version OpenSSH_3.4p1
debug1: private host key: #0 type 0 RSA1
debug3: Not a RSA1 key file
/usr/local/openssh-3.4p1/etc/ssh_host_rsa_key.
debug1: read PEM private key done: type RSA
debug1: private host key: #1 type 1 RSA
debug3: Not a RSA1 key file
/usr/local/openssh-3.4p1/etc/ssh_host_dsa_key.
debug1: read PEM private key done: type DSA
debug1: private host key: #2 type 2 DSA
socket: Address family not supported by protocol
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
Generating 768 bit RSA key.
RSA key generation complete.
debug1: Server will not fork when running in debugging mode.
Connection from 192.168.1.44 port 32812
debug1: Client protocol version 2.0; client software version
OpenSSH_3.4p1
debug1: match: OpenSSH_3.4p1 pat OpenSSH*
Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-1.99-OpenSSH_3.4p1
debug3: privsep user:group 503:508
debug1: list_hostkey_types: ssh-rsa,ssh-dss
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none
debug2: kex_parse_kexinit: none
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST received
debug3: mm_request_send entering: type 0
debug3: mm_choose_dh: waiting for MONITOR_ANS_MODULI
debug3: mm_request_receive_expect entering: type 1
debug3: mm_request_receive entering
debug2: Network child is on pid 2299
debug3: preauth child monitor started
debug3: mm_request_receive entering
debug3: monitor_read: checking request 0
debug3: mm_answer_moduli: got parameters: 1024 2048 8192
debug3: mm_request_send entering: type 1
debug2: monitor_read: 0 used once, disabling now
debug3: mm_choose_dh: remaining 0
debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent
debug3: mm_request_receive entering
debug1: dh_gen_key: priv key bits set: 119/256
debug1: bits set: 1655/3191
debug1: expecting SSH2_MSG_KEX_DH_GEX_INIT
debug1: bits set: 1605/3191
debug3: mm_key_sign entering
debug3: mm_request_send entering: type 4
debug3: monitor_read: checking request 4
debug3: mm_answer_sign
debug3: mm_answer_sign: signature 0x8099a90(143)
debug3: mm_request_send entering: type 5
debug2: monitor_read: 4 used once, disabling now
debug3: mm_request_receive entering
debug3: mm_key_sign: waiting for MONITOR_ANS_SIGN
debug3: mm_request_receive_expect entering: type 5
debug3: mm_request_receive entering
debug1: SSH2_MSG_KEX_DH_GEX_REPLY sent
debug1: kex_derive_keys
debug1: newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: waiting for SSH2_MSG_NEWKEYS
debug1: newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: KEX done
debug1: userauth-request for user bl8n8r service ssh-connection method
none
debug1: attempt 0 failures 0
debug3: mm_getpwnamallow entering
debug3: mm_request_send entering: type 6
debug3: monitor_read: checking request 6
debug3: mm_answer_pwnamallow
debug3: allowed_user: today 11867 sp_expire -1 sp_lstchg 11845 sp_max
99999
debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1
debug3: mm_request_send entering: type 7
debug2: monitor_read: 6 used once, disabling now
debug3: mm_request_receive entering
debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM
debug3: mm_request_receive_expect entering: type 7
debug3: mm_request_receive entering
debug2: input_userauth_request: setting up authctxt for bl8n8r
debug3: mm_inform_authserv entering
debug3: mm_request_send entering: type 3
debug3: monitor_read: checking request 3
debug3: mm_answer_authserv: service=ssh-connection, style=
debug2: monitor_read: 3 used once, disabling now
debug3: mm_request_receive entering
debug2: input_userauth_request: try method none
debug3: mm_auth_password entering
debug3: mm_request_send entering: type 10
debug3: monitor_read: checking request 10
debug3: mm_answer_authpassword: sending result 0
debug3: mm_request_send entering: type 11
Failed none for bl8n8r from 192.168.1.44 port 32812 ssh2
debug3: mm_request_receive entering
debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD
debug3: mm_request_receive_expect entering: type 11
debug3: mm_request_receive entering
debug3: mm_auth_password: user not authenticated
Failed none for bl8n8r from 192.168.1.44 port 32812 ssh2
debug1: userauth-request for user bl8n8r service ssh-connection method
keyboard-interactive
debug1: attempt 1 failures 1
debug2: input_userauth_request: try method keyboard-interactive
debug1: keyboard-interactive devs
debug1: auth2_challenge: user=bl8n8r devs=
debug1: kbdint_alloc: devices ''
debug2: auth2_challenge_start: devices
Failed keyboard-interactive for bl8n8r from 192.168.1.44 port 32812
ssh2
debug1: userauth-request for user bl8n8r service ssh-connection method
password
debug1: attempt 2 failures 2
debug2: input_userauth_request: try method password
debug3: mm_auth_password entering
debug3: mm_request_send entering: type 10
debug3: monitor_read: checking request 10
debug3: mm_answer_authpassword: sending result 0
debug3: mm_request_send entering: type 11
Failed password for bl8n8r from 192.168.1.44 port 32812 ssh2
debug3: mm_request_receive entering
debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD
debug3: mm_request_receive_expect entering: type 11
debug3: mm_request_receive entering
debug3: mm_auth_password: user not authenticated
Failed password for bl8n8r from 192.168.1.44 port 32812 ssh2
debug1: userauth-request for user bl8n8r service ssh-connection method
password
debug1: attempt 3 failures 3
debug2: input_userauth_request: try method password
debug3: mm_auth_password entering
debug3: mm_request_send entering: type 10
debug3: monitor_read: checking request 10
debug3: mm_answer_authpassword: sending result 0
debug3: mm_request_send entering: type 11
Failed password for bl8n8r from 192.168.1.44 port 32812 ssh2
debug3: mm_request_receive entering
debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD
debug3: mm_request_receive_expect entering: type 11
debug3: mm_request_receive entering
debug3: mm_auth_password: user not authenticated
Failed password for bl8n8r from 192.168.1.44 port 32812 ssh2
debug1: userauth-request for user bl8n8r service ssh-connection method
password
debug1: attempt 4 failures 4
debug2: input_userauth_request: try method password
debug3: mm_auth_password entering
debug3: mm_request_send entering: type 10
debug3: monitor_read: checking request 10
debug3: mm_answer_authpassword: sending result 0
debug3: mm_request_send entering: type 11
Failed password for bl8n8r from 192.168.1.44 port 32812 ssh2
debug3: mm_request_receive entering
debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD
debug3: mm_request_receive_expect entering: type 11
debug3: mm_request_receive entering
debug3: mm_auth_password: user not authenticated
Failed password for bl8n8r from 192.168.1.44 port 32812 ssh2
Connection closed by 192.168.1.44
debug1: Calling cleanup 0x806b060(0x0)
debug1: Calling cleanup 0x806b060(0x0)
[0945][root@fungus:/usr/local/openssh-3.4p1/etc]$
CLIENT
==================================================================
[Sat 06/29/02 09:45 AM]
[/usr/local/openssh-3.4p1/bin]
[bl8n8r@1gig (-ø)]$ ./ssh 192.168.1.120
The authenticity of host '192.168.1.120 (192.168.1.120)' can't be
established.
RSA key fingerprint is
23:ce:98:1a:9c:0c:14:2d:58:b4:d7:78:27:bc:50:36.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.1.120' (RSA) to the list of known
hosts.
bl8n8r@192.168.1.120's password:
Permission denied, please try again.
bl8n8r@192.168.1.120's password:
Permission denied, please try again.
bl8n8r@192.168.1.120's password:
Permission denied (publickey,password,keyboard-interactive).
HOSTS.ALLOW
==================================================================
#
# hosts.allow This file describes the names of the hosts which are
# allowed to use the local INET services, as decided
# by the '/usr/sbin/tcpd' server.
#
#
all:local
all:192.168.1.
- Next message: where: "Re: trouble with OpenSSH_3.4p1"
- Previous message: Nico Kadel-Garcia: "RedHat has posted updated OpenSSH 3.1p1"
- Next in thread: Roy Smith: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Reply: Roy Smith: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Reply: kwan@digitalhermit.com: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Reply: bad_knee: "Re: can't get openssh-3.4p1 to authenticate (failed password and permission denied)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
